5 matches found
SAP Mobile Platform 2.3 XXE Injection
Application: SAP Mobile Platform 2.3 Versions Affected: SAP Mobile Platform 2.3, probably others Vendor URL: http://SAP.com Bugs: XML External Entity Send: 25.02.2015 Reported: 25.02.2015 Vendor response: 25.02.2015 Date of Public Advisory: 11.08.2015 Reference: SAP Security Note 2152227 Author:...
SAP Mobile Platform 2.3 XXE Injection Vulnerability
SAP Mobile Platform version 2.3 suffers from an XML external entity injection vulnerability Application: SAP Mobile Platform 2.3 Versions Affected: SAP Mobile Platform 2.3, probably others Vendor URL: http://SAP.com Bugs: XML External Entity Send: 25.02.2015 Reported: 25.02.2015 Vendor response:...
CVE-2015-6664
XML external entity XXE vulnerability in the application import functionality in SAP Mobile Platform 2.3 allows remote attackers to read arbitrary files and possibly have other unspecified impact via crafted XML data, aka SAP Security Note 2152227...
CVE-2015-6664
CVE-2015-6664 affects SAP Mobile Platform 2.3 and potentially others, with an XML External Entity (XXE) vulnerability in the application import feature. An attacker can read arbitrary files on the server by crafting XML data that leverages a DTD. Vulnerable component: the XML parser handling appl...
SAP Mobile Platform 2.3 - XXE vulnerability in application import
Application: SAP Mobile Platform 2.3 Vendor URL: http://www.sap.com Bugs: XML eXternal Entity Reported: 25.02.2015 Vendor response: 25.02.2015 Date of Public Advisory: 11.08.2015 Reference: SAP Security Note 2152227 Authors: Vahagn Vardanyan ERPScan Vulnerability information Class: XML External...