3 matches found
CVE-2025-31328
SAP Learning Solution is vulnerable to Cross-Site Request Forgery CSRF, allowing an attacker to trick authenticated user into sending unintended requests to the server. GET-based OData function is named in a way that it violates the expected behaviour. This issue could impact both the...
CVE-2025-31328
CVE-2025-31328 – SAP Learning Solution (CSRF) : The SAP Learning Solution is vulnerable to Cross-Site Request Forgery, allowing authenticated users to be tricked into unintended requests. A GET-based OData function is noted to violate expected behavior, with impact described as affecting confiden...
CVE-2025-31328 Cross-Site Request Forgery (CSRF) vulnerability in SAP S/4 HANA (Learning Solution)
SAP Learning Solution is vulnerable to Cross-Site Request Forgery CSRF, allowing an attacker to trick authenticated user into sending unintended requests to the server. GET-based OData function is named in a way that it violates the expected behaviour. This issue could impact both the...