7 matches found
CVE-2020-6286
The insufficient input path validation of certain parameter in the web service of SAP NetWeaver AS JAVA LM Configuration Wizard, versions - 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to exploit a method to download zip files to a specific directory, leading to Path Traversal...
Exploit for Path Traversal in Sap Netweaver_Application_Server_Java
CVE-2020-6286 SAP NetWeaver AS JAVA LM Configuration Wizard...
SAP NetWeaver Directory Traversal (CVE-2020-6286; CVE-2020-6287)
A directory traversal vulnerability exists in SAP NetWeaver. Successful exploitation of this vulnerability could lead to disclosure of file contents accessible by the prime user...
CVE-2020-6286
creationtimestamp| type| source ---|---|--- 2020-07-16 19:08:39+00:00| published-proof-of-concept| Telegram/lWAGv8YDI46dFjjFFYQXPPwmkKa6QIojZ6ZnkxuW1UDxw 2024-11-02 15:59:08+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1431 2024-11-14 06:07:10+00:00| seen|...
Exploit for Path Traversal in Sap Netweaver_Application_Server_Java
PoC for CVE-2020-6287, CVE-2020-6286 SAP RECON vulnerability...
CVE-2020-6286
The insufficient input path validation of certain parameter in the web service of SAP NetWeaver AS JAVA LM Configuration Wizard, versions - 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to exploit a method to download zip files to a specific directory, leading to Path Traversal...
CVE-2020-6286
SAP NetWeaver AS Java LM Configuration Wizard (versions 7.30–7.50) is affected by CVE-2020-6286/6287, due to insufficient input path validation and lack of authentication for certain web services. The vulnerability allows an unauthenticated attacker to perform path traversal (downloading zip file...