Significant security vulnerabilities discovered in SAP NetWeaver

As your partner and specialist for SAP portals, we would like to draw your attention briefly to the current notification.

An XSS vulnerability currently allows the theft of credentials. In addition, an attacker can upload any files to a server and possibly even execute them. SAP already distributes a patch for the vulnerabilities. (Source)
Below we have listed the relevant SAP Notes (for the vulnerabilities discussed in the article) so that you can address the issues before they become problems:

Enterprise Portal Navigation:
SAP NetWeaver Log Viewer: und
SAP Enterprise Portal Theme Editor: und
Außerdem ergänzend für die Central Technical Configuration:

We hope to have helped you with the note. For further questions, we are of course happy to help.