CVE-2022-22535

SAP ERP HCM Portugal - versions 600, 604, 608, does not perform necessary authorization checks for a report that reads the payroll data of employees in a certain area. Since the affected report only reads the payroll information, the attacker can neither modify any information nor cause...

SAP Enterprise Financial Services 安全漏洞

SAP Enterprise Financial Services is a set of enterprise financial services solutions from SAP. A security vulnerability exists in SAP Enterprise Financial Services versions 101, 102, 103, 104, 105, 600, 603, 604, 605, 606, 616, 617, 618, and 800, which arises from a program that does not perform...

CVE-2020-6301

SAP ERP HCM Travel Management, versions - 600, 602, 603, 604, 605, 606, 607, 608, allows an authenticated but unauthorized attacker to read, modify and settle trips, resulting in escalation of privileges, due to Missing Authorization Check...

Janitza UMG Cross-Site Request Forgery Vulnerability

The Janitza UMG is an online power quality monitor for the energy industry from Janitza Germany. A cross-site request forgery vulnerability exists in Janitza UMG 508, 509, 511, 604,605. This allows remote attackers to hijack the authentication of arbitrary user identities...