Loading
SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability.
Use CWE-79, Sap vendor hub and Netweaver product page to widen CVE-2023-33984 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-31324, CVE-2025-42999 and CVE-2023-36922 for nearby disclosures in the same product family. Additional editorial context is available in The Weekly Cybersecurity Brief: February 13th, 2026.