SAP Knowledge Base Article - Preview

3050463 - AS Java UI related security vulnerabilities in useradmin/index.jsp

Symptom

Third party vulnerability scan tool reports ClickJacking or Cross-Site Request Forgery vulnerability in http(s)://<hostname>:<port>/useradmin/index.jsp URL.


Read more...

Environment

SAP NetWeaver Application Server Java all versions

Product

SAP NetWeaver Application Server for Java all versions

Keywords

cilck jack, click jacking, clickjacking, click, jacking, jack, /useradmin/index.jsp, index.jsp, ume, useradmin, user admin, jsp, Cross-Site Request Forgery, CSRF, CSRF vulnerability , KBA , BC-JAS-SEC-UME , User Management Engine , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.