CVE-2017-15294

The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.

Source: CVE-2017-15294