Lucene search
K

7 matches found

0day.today
0day.today
added 2015/11/23 12:0 a.m.47 views

SAP Afaria 7 Cross Site Scripting Vulnerability

SAP Afaria version 7 suffers from a stored cross site scripting vulnerability. Application: SAP Afaria Versions Affected: SAP Afaria 7, probably others Vendor URL: http://SAP.com Bugs: Stored XSS Send: 18.02.2015 Reported: 18.02.2015 Vendor response: 18.02.2015 Date of Public Advisory: 11.08.2015...

4.3CVSS6.1AI score0.01273EPSS
Exploits1
erpscan
erpscan
added 2014/09/04 12:0 a.m.67 views

SAP HANA metadata.xsjs - SQL injection

Application: SAP HANA Versions Affected: 1.00.60.379371 Vendor URL: http://www.sap.com Bugs: SQL injection Exploits: YES Reported: 09.04.2014 Vendor response: 10.04.2014 Date of Public Advisory: 17.10.2014 Reference: SAP Security Note 2067972 Author: Dmitry Chastukhin ERPScan Description SQL...

0.2AI score
Exploits0
erpscan
erpscan
added 2014/09/04 12:0 a.m.21 views

SAP HANA Application Lifecycle manager - CSRF token bypass (Verb tampering)

Application: SAP HANA Versions Affected: 1.00.60.379371 Vendor URL: http://www.sap.com Bugs: CSRF token bypass Verb tampering Reported: 09.04.2014 Vendor response: 10.04.2014 Date of Public Advisory: 21.08.2014 Reference: SAP Security Note 2011169 Author: Dmitry Chastukhin ERPScan Description It ...

0.6AI score
Exploits0
erpscan
erpscan
added 2014/04/04 12:0 a.m.31 views

SAP HANA net.xsjs - SQL injection

Application: SAP HANA Versions Affected: 1.00.60.379371 Vendor URL: http://www.sap.com Bugs: SQL injection Exploits: YES Reported: 04.04.2014 Vendor response: 04.04.2014 Date of Public Advisory: 21.08.2014 Reference: SAP Security Note 2014881 Author: Dmitry Chastukhin, Vahagn Vardanyan ERPScan...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2013/05/14 12:0 a.m.29 views

SAP SOAP RFC - SXPG_COMMAND_EXECUTE Remote Command Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ This module is based on, inspired by, or is a port of a...

7.4AI score
Exploits0
erpscan
erpscan
added 2011/12/03 12:0 a.m.18 views

SAP Portal - unauthorized file read

Application: SAP Portal Vendor URL: http://www.sap.com Bugs: Directory traversal Exploits: YES Reported: 12.03.2011 Vendor response: 13.03.2011 Date of Public Advisory: 12.09.2012 Reference: SAP Security Note 1707494 Author: Dmitry Chastukhin ERPScan Description It is possible to read files in...

6.3AI score
Exploits0
erpscan
erpscan
added 2011/06/12 12:0 a.m.26 views

SAP NetWeaver AdapterFramework - information disclosure

Application: SAP NetWeaver J2EE Versions Affected: SAP NetWeaver J2EE Vendor URL: http://www.sap.com Bugs: Information Disclosure Exploits: YES Reported: 06.12.2011 Vendor response: 07.12.2011 Date of Public Advisory: 13.11.2012 Reference: SAP Security Note 1679897 Authors: Dmitry Chastukhin...

0.5AI score
Exploits0
Rows per page
Query Builder