Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

CVE
CVEadded 2012/02/23 6:0 p.m.48 views

CVE-2012-1289

SAP NetWeaver 7.0 is affected by multiple directory traversal vulnerabilities in log.jsp/log_view.jsp under Internet Sales (crm.b2b) and Application Administration (com.sap.ipc.webapp.ipc). The root cause is improper validation of the logfilename parameter, allowing remote authenticated users to ...

4CVSS6.6AI score0.00491EPSS
Exploits1References7Affected Software1
Cvelist
Cvelistadded 2012/02/23 6:0 p.m.22 views

CVE-2012-1289

Multiple directory traversal vulnerabilities in SAP NetWeaver 7.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the logfilename parameter to 1 b2b/admin/log.jsp or 2 b2b/admin/logview.jsp in the Internet Sales crm.b2b component, or 3 ipc/admin/log.jsp or 4...

6.5AI score0.00491EPSS
Exploits1References7
ATTACKERKB
ATTACKERKBadded 2011/05/04 12:0 a.m.15 views

InduSoft Web Studio ISSymbol.ocx InternationalSeparator() Heap Overflow

Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft Web Studio before 7.0+SP1, and InduSoft Thin Client 7.0, allow remote attackers to execute...

9.3CVSS7.2AI score0.44861EPSS
Exploits12References12
Rows per page
Query Builder