-Infinity
0

SAP NetWeaverMissing Authorization check in SAP NetWeaver (Visual Composer development server)

First published (updated )

BleepingComputerOver 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw

First published (updated )

BleepingComputerSAP fixes suspected NetWeaver zero-day exploited in attacks

First published (updated )

SAP IDES ECCCode Injection vulnerability in SAP IDES Systems

7.4
EPSS
0.04%
First published (updated )

SAP Field LogisticsOData meta-data property entity tampering in SAP Field Logistics

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SAP S/4HANA (Learning Solution)Cross-Site Request Forgery (CSRF) vulnerability in SAP S/4 HANA (Learning Solution)

First published (updated )

SAP BusinessObjects Business IntelligenceUnder certain conditions, an attacker authenticated as a CMS administrator and with high privileges …

First published (updated )

SAP NetWeaver Solution ManagerSAP Solution Manager (Diagnostic Agent) - version 7.20, allows an authenticated attacker on Windows …

First published (updated )

SAP NetWeaver AS for JavaXSS, Input Validation

First published (updated )

SAP BusinessObjects Business IntelligenceCSRF

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SAP Basis Component 700Code Injection

8.8
First published (updated )

SAP Commerce WebservicesXSS, Input Validation

First published (updated )

SAP BusinessObjects Business IntelligenceMalicious File Upload

First published (updated )

SAP Business Planning and ConsolidationIn some SAP standard roles in SAP Business Planning and Consolidation - versions - SAP_BW 750, 751, …

8.5
First published (updated )

SAP Process IntegrationSQL Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SAP Contract Lifecycle ManagerDue to improper input sanitization in SAP Sourcing and SAP Contract Lifecycle Management - version 1…

First published (updated )

SAP Disclosure ManagementSAP Disclosure Management - version 10.1, allows an authenticated attacker to exploit certain miscon…

First published (updated )

SAP Process IntegrationSQL Injection

First published (updated )

SAP NetWeaverSAP NetWeaver Directory Traversal Vulnerability

First published (updated )

SAP KernelThe SAP Message Server HTTP daemon in SAP KERNEL 7.21-7.49 allows remote attackers to cause a denial…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SAP SAPLPDInput Validation

7.5
First published (updated )

SAP NetWeaverInfoleak

7.5
First published (updated )

SAP S/4HANA FinanceMissing Authorization check in SAP S/4HANA Finance (Advanced Payment Management)

EPSS
0.05%
First published (updated )

SAP ABAPMissing Authorization check in SAP ABAP Platform

EPSS
0.04%
First published (updated )

SAP Emarsys SDK for Android Sensitive Data Leak (CVE-2023-6542)

First published (updated )
Social
reddit

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SAP S/4HANA (Learning Solution)Code Injection Vulnerability in SAP S/4HANA (Private Cloud or On-Premise)

First published (updated )

SAP NetWeaverSAP NetWeaver SQL Injection Vulnerability

First published (updated )

SAP NetWeaverSAP NetWeaver Information Disclosure Vulnerability

First published (updated )

SAP CCMS AgentCode Injection

7.5
First published (updated )

SAP NetWeaver (Enterprise Portal)XSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203