SAP-渗透云记 - 专注于网络安全与技术分享

CVE-2025-31324: SAP NetWeaver Visual Composer Metadata Uploader – Deserialization

漏洞标题 CVE-2025-31324: SAP NetWeaver Visual Composer Metadata Uploader - Deserialization 漏洞描述 SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper a...

云记2025年9月17日 18:02

CVE-2022-22536: SAP Memory Pipes (MPI) Desynchronization

漏洞标题 CVE-2022-22536: SAP Memory Pipes (MPI) Desynchronization 漏洞描述 SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content ...

付费阅读100 漏洞库

云记2022年1月1日 15:44

CVE-2021-33690: SAP NetWeaver Development Infrastructure – Server Side Request Forgery

漏洞标题 CVE-2021-33690: SAP NetWeaver Development Infrastructure - Server Side Request Forgery 漏洞描述 Server-Side Request Forgery (SSRF) vulnerability has been detected in the S...

付费阅读100 漏洞库

云记2021年8月11日 22:10

CVE-2021-42063: SAP Knowledge Warehouse <=7.5.0 - Cross-Site Scripting

漏洞标题 CVE-2021-42063: SAP Knowledge Warehouse <=7.5.0 - Cross-Site Scripting 漏洞描述 SAP Knowledge Warehouse 7.30, 7.31, 7.40, and 7.50 contain a reflected cross-site script...

付费阅读100 漏洞库

云记2021年4月17日 15:55

CVE-2020-26836: SAP Solution Manager – Open Redirect

漏洞标题 CVE-2020-26836: SAP Solution Manager - Open Redirect 漏洞描述 SAP Solution Manager contains an open redirect vulnerability via the logoff endpoint. An attacker can redirec...

付费阅读100 漏洞库

云记2020年9月8日 21:41

CVE-2020-6308: SAP BusinessObjects Business Intelligence Platform – Blind Server-Side Request Forgery

漏洞标题 CVE-2020-6308: SAP BusinessObjects Business Intelligence Platform - Blind Server-Side Request Forgery 漏洞描述 SAP BusinessObjects Business Intelligence Platform (Web Serv...

付费阅读100 漏洞库

云记2020年6月14日 08:41

CVE-2020-6287: SAP NetWeaver AS JAVA 7.30-7.50 – Remote Admin Addition

漏洞标题 CVE-2020-6287: SAP NetWeaver AS JAVA 7.30-7.50 - Remote Admin Addition 漏洞描述 SAP NetWeaver AS JAVA (LM Configuration Wizard), versions 7.30, 7.31, 7.40, 7.50, does not ...

付费阅读100 漏洞库

云记2020年5月28日 21:31

CVE-2020-6207: SAP Solution Manager 7.2 – Remote Command Execution

漏洞标题 CVE-2020-6207: SAP Solution Manager 7.2 - Remote Command Execution 漏洞描述 SAP Solution Manager (SolMan) running version 7.2 has a remote command execution vulnerability ...

付费阅读100 漏洞库

云记2020年1月16日 13:46

CVE-2018-2392: SAP Internet Graphics Server (IGS) – XML External Entity Injection

漏洞标题 CVE-2018-2392: SAP Internet Graphics Server (IGS) - XML External Entity Injection 漏洞描述 SAP Internet Graphics Servers (IGS) running versions 7.20, 7.20EXT, 7.45, 7.49, ...

付费阅读100 漏洞库

云记2018年8月24日 15:15

CVE-2017-12637: SAP NetWeaver Application Server Java 7.5 – Local File Inclusion

漏洞标题 CVE-2017-12637: SAP NetWeaver Application Server Java 7.5 - Local File Inclusion 漏洞描述 SAP NetWeaver Application Server Java 7.5 is susceptible to local file inclusion ...

付费阅读100 漏洞库

云记2017年6月26日 09:35

CVE-2016-2389: SAP xMII 15.0 for SAP NetWeaver 7.4 – Local File Inclusion

漏洞标题 CVE-2016-2389: SAP xMII 15.0 for SAP NetWeaver 7.4 - Local File Inclusion 漏洞描述 SAP xMII 15.0 for SAP NetWeaver 7.4 is susceptible to a local file inclusion vulnerabili...

付费阅读100 漏洞库

云记2016年11月3日 00:45

CVE-2005-3634: SAP Web Application Server 6.x/7.0 – Open Redirect

漏洞标题 CVE-2005-3634: SAP Web Application Server 6.x/7.0 - Open Redirect 漏洞描述 frameset.htm in the BSP runtime in SAP Web Application Server (WAS) 6.10 through 7.00 allows rem...

付费阅读100 漏洞库

云记2005年6月11日 07:32