Lucene search
K

10 matches found

Circl
Circl
added 2023/06/14 9:10 p.m.13 views

CVE-2016-2388

creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-03 16:21:14+00:00| seen| https://t.me/arpsyndicate/976 2024-12-24 20:32:28+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971660 2025-02-06 02:42:30+00:00| see...

5.3CVSS6.4AI score0.51553EPSS
Exploits10References5
Tenable Nessus
Tenable Nessus
added 2022/06/16 12:0 a.m.57 views

SAP NetWeaver AS Java Information Disclosure (2256846)

The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.1 to 7.5, allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846. Note that Nessus has not tested for this issue but has instead relied only on the application's...

5.3CVSS6.4AI score0.51553EPSS
Exploits10References4
Packet Storm
Packet Storm
added 2018/01/12 12:0 a.m.93 views

SAP NetWeaver J2EE Engine 7.40 SQL Injection

!/usr/bin/env python coding=utf-8 """ Author: Vahagn Vardanyan https://twitter.com/vah13 Bugs: CVE-2016-2386 SQL injection CVE-2016-2388 Information disclosure CVE-2016-1910 Crypto issue Follow HTTP request is a simple PoC for anon time-based SQL injection CVE-2016-2386 vulnerability in SAP...

7.5CVSS6.2AI score0.7106EPSS
Exploits13
0day.today
0day.today
added 2018/01/11 12:0 a.m.187 views

SAP NetWeaver J2EE Engine 7.40 - SQL Injection Exploit

Exploit for multiple platform in category web applications !/usr/bin/env python coding=utf-8 """ Author: Vahagn Vardanyan https://twitter.com/vah13 Bugs: CVE-2016-2386 SQL injection CVE-2016-2388 Information disclosure CVE-2016-1910 Crypto issue Follow HTTP request is a simple PoC for anon...

7.5CVSS5.7AI score0.7106EPSS
Exploits13
exploitpack
exploitpack
added 2018/01/10 12:0 a.m.23 views

SAP NetWeaver J2EE Engine 7.40 - SQL Injection

SAP NetWeaver J2EE Engine 7.40 - SQL Injection !/usr/bin/env python coding=utf-8 """ Author: Vahagn Vardanyan https://twitter.com/vah13 Bugs: CVE-2016-2386 SQL injection CVE-2016-2388 Information disclosure CVE-2016-1910 Crypto issue Follow HTTP request is a simple PoC for anon time-based SQL...

7.5CVSS0.4AI score0.7106EPSS
Exploits13
OpenVAS
OpenVAS
added 2016/05/23 12:0 a.m.37 views

SAP NetWeaver AS Java Multiple Vulnerabilities (2101079, 2191290, 2256846) - Active Check

SAP NetWeaver Application Server AS Java is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.8CVSS6AI score0.7106EPSS
Exploits13References7
Exploit DB
Exploit DB
added 2016/05/19 12:0 a.m.84 views

SAP NetWeaver AS JAVA 7.1 < 7.5 - Information Disclosure

Application:SAP NetWeaver AS JAVA Versions Affected: SAP NetWeaver AS JAVA 7.1 - 7.5 Vendor URL: http://SAP.com Bugs: information disclosure Sent: 15.09.2015 Reported: 15.09.2015 Vendor response: 16.09.2015 Date of Public Advisory: 09.02.2016 Reference: SAP Security Note 2256846 Author: Vahagn...

5.3CVSS5.7AI score0.51553EPSS
Exploits10
0day.today
0day.today
added 2016/05/19 12:0 a.m.99 views

SAP NetWeaver AS JAVA 7.1 < 7.5 - Information Disclosure

Exploit for java platform in category web applications Application:SAP NetWeaver AS JAVA Versions Affected: SAP NetWeaver AS JAVA 7.1 - 7.5 Vendor URL: http://SAP.com Bugs: information disclosure Sent: 15.09.2015 Reported: 15.09.2015 Vendor response: 16.09.2015 Date of Public Advisory: 09.02.2016...

5CVSS5.7AI score0.51553EPSS
Exploits10
CVE
CVE
added 2016/02/16 3:0 p.m.1013 views

CVE-2016-2388

CVE-2016-2388 affects SAP NetWeaver AS JAVA (notably 7.4; referenced in SAP Security Note 2256846) where the Universal Worklist Configuration enables remote disclosure of sensitive user information via a crafted HTTP request. Documented impact is information disclosure with network-based access a...

5.3CVSS5AI score0.51553EPSS
In wildExploits10References8Affected Software1
erpscan
erpscan
added 2015/09/15 12:0 a.m.158 views

SAP NetWeaver AS JAVA - information disclosure vulnerability

Application: SAP NetWeaver AS JAVA Versions Affected: SAP NetWeaver AS JAVA 7.1 – 7.5 Vendor URL: SAP Bugs: Information disclosure Reported: 15.09.2015 Vendor response: 16.09.2015 Date of Public Advisory: 09.02.2016 Reference: SAP Security Note 2256846 Author: Vahagn Vardanyan ERPScan VULNERABILI...

5CVSS5.9AI score0.51553EPSS
Exploits10
Rows per page
Query Builder