71 matches found
EUVD-2007-3480
Malware in sbrugna...
EUVD-2018-14333
Malware in sbrugna...
EUVD-2019-1094
Malware in sbrugna...
EUVD-2018-14349
Malware in sbrugna...
EUVD-2013-3001
Malware in sbrugna...
EUVD-2016-5538
Malware in sbrugna...
EUVD-2018-14222
Malware in sbrugna...
EUVD-2019-1052
Malware in sbrugna...
EUVD-2025-20330
Malicious code in bioql PyPI...
EUVD-2022-44473
Malicious code in bioql PyPI...
CVE-2025-42986
Due to a missing authorization check in an obsolete RFC enabled function module in SAP BASIS, an authenticated low-privileged attacker could call a Remote Function Call RFC, potentially accessing restricted system information. This results in low impact on confidentiality, with no impact on...
CVE-2025-42986
Due to a missing authorization check in an obsolete RFC enabled function module in SAP BASIS, an authenticated low-privileged attacker could call a Remote Function Call RFC, potentially accessing restricted system information. This results in low impact on confidentiality, with no impact on...
CVE-2025-42986
CVE-2025-42986 concerns SAP BASIS with a missing authorization check in an obsolete RFC-enabled function module. The root cause allows an authenticated, low-privilege attacker to invoke a Remote Function Call (RFC) and potentially access restricted system information. The documented impact is lim...
PT-2025-28299 · Sap · Sap Basis
Name of the Vulnerable Software and Affected Versions: SAP BASIS affected versions not specified Description: The issue is caused by a missing authorization check in an obsolete RFC enabled function module. This allows an authenticated low-privileged attacker to call a Remote Function Call RFC,...
CVE-2022-41264
Due to the unrestricted scope of the RFC function module, SAP BASIS - versions 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790, 791, allows an authenticated non-administrator attacker to access a system class and execute any of its public methods with parameters provided by the attacke...
CVE-2024-22128
SAP NWBC for HTML - versions SAPUI 754, SAPUI 755, SAPUI 756, SAPUI 757, SAPBASIS 700, SAPBASIS 701, SAPBASIS 702, SAPBASIS 731, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. An unauthenticated attacker can inject malicious javascript to...
SAP NetWeaver Business Client for HTML Cross-Site Scripting Vulnerability
SAP NetWeaver Business Client for HTML SAP NWBC for HTML is a lightweight browser-based version of NWBC from SAP, Germany. SAP NetWeaver Business Client for HTML SAPUI 754, SAPUI 755, SAPUI 756, SAPUI 757, SAPUI 758, SAPBASIS 700, SAPBASIS 701, SAPBASIS 702, SAPBASIS 731 versions have a security...
CVE-2023-49584
SAP Fiori launchpad - versions SAPUI 750, SAPUI 754, SAPUI 755, SAPUI 756, SAPUI 757, SAPUI 758, UI700 200, SAPBASIS 793, allows an attacker to use HTTP verb POST on read-only service causing low impact on Confidentiality of the application...
CVE-2023-40624
SAP NetWeaver AS ABAP applications based on Unified Rendering - versions SAPUI 754, SAPUI 755, SAPUI 756, SAPUI 757, SAPUI 758, SAPBASIS 702, SAPBASIS 731, allows an attacker to inject JavaScript code that can be executed in the web-application. An attacker could thereby control the behavior of...
PT-2023-4244 · Sap · Abap Platform +1
Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Application Server ABAP and ABAP Platform - versions SAP BASIS 700, SAP BASIS 701, SAP BASIS 702, SAP BASIS 731, SAP BASIS 740, SAP BASIS 750, SAP BASIS 752, SAP BASIS 753, SAP BASIS 754, SAP BASIS 755, SAP BASIS 756, SAP BASIS...