Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CVE
CVEadded 2025/02/11 12:37 a.m.49 views

CVE-2025-24870

CVE-2025-24870 affects SAP GUI for Windows (and RFC service) where credentials are stored in the process memory. This can allow an unauthenticated (local) attacker to access sensitive information and cause privilege escalation, with confidentiality impact but no reported integrity/availability im...

6CVSS6AI score0.00029EPSS
Exploits0References2
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.33 views

SAP SOAP RFC SXPG_COMMAND_EXECUTE Remote Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ This module is based...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2013/05/09 12:0 a.m.25 views

SAP SOAP RFC SXPG_CALL_SYSTEM Remote Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ This module is based on, inspired by, or is a port of a...

Exploits0
Metasploit
Metasploitadded 2013/05/08 3:46 a.m.22 views

SAP SOAP RFC SXPG_COMMAND_EXECUTE Remote Command Execution

This module abuses the SAP NetWeaver SXPGCOMMANDEXECUTE function, on the SAP SOAP RFC Service, to execute remote commands. This module needs SAP credentials with privileges to use the /sap/bc/soap/rfc in order to work. The module has been tested successfully on Windows 2008 64-bit and Linux 64-bi...

0.2AI score
Exploits0
Metasploit
Metasploitadded 2013/05/07 10:1 p.m.36 views

SAP SOAP RFC SXPG_CALL_SYSTEM Remote Command Execution

This module abuses the SAP NetWeaver SXPGCALLSYSTEM function, on the SAP SOAP RFC Service, to execute remote commands. This module needs SAP credentials with privileges to use the /sap/bc/soap/rfc in order to work. The module has been tested successfully on Windows 2008 64-bit and Linux 64-bit...

10AI score
Exploits0
Metasploit
Metasploitadded 2013/05/02 3:15 p.m.16 views

SAP SOAP RFC PFL_CHECK_OS_FILE_EXISTENCE File Existence Check

This module abuses the SAP NetWeaver PFLCHECKOSFILEEXISTENCE function, on the SAP SOAP RFC Service, to check for files existence on the remote file system. The module can also be used to capture SMB hashes by using a fake SMB share as FILEPATH. This module requires Metasploit:...

7AI score
Exploits0
Rows per page
Query Builder