3 matches found
CVE-2021-33705
The SAP NetWeaver Portal, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, component Iviews Editor contains a Server-Side Request Forgery SSRF vulnerability which allows an unauthenticated attacker to craft a malicious URL which when clicked by a user can make any type of request e.g. POST, G...
Server side request forgery (ssrf)
The SAP NetWeaver Portal, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, component Iviews Editor contains a Server-Side Request Forgery SSRF vulnerability which allows an unauthenticated attacker to craft a malicious URL which when clicked by a user can make any type of request e.g. POST, G...
CVE-2021-33705
The CVE-2021-33705 issue affects SAP NetWeaver Portal (Iviews Editor) and is caused by a Server-Side Request Forgery (SSRF) vulnerability in the design-time component. An unauthenticated attacker can craft a malicious URL that, when a user clicks it, makes arbitrary requests (e.g., POST, GET) to ...