2 matches found
CVE-2015-2812
CVE-2015-2812 affects SAP NetWeaver Portal 7.31.201109172004, via XMLValidationComponent (parserXMLValidationComponent). The vulnerability is caused by the XML parser’s default handling of external entities (XXE), allowing a remote attacker to send crafted XML that can read internal resources or ...
CVE-2015-2812
XML external entity XXE vulnerability in XMLValidationComponent in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2093966...