Search Results | AttackerKB

32 Total Results

Displaying 31-32 of 32

Attacker Value

Unknown

CVE-2018-2492

Disclosure Date: December 11, 2018 (last updated November 27, 2024)

SAML 2.0 functionality in SAP NetWeaver AS Java, does not sufficiently validate XML documents received from an untrusted source. This is fixed in versions 7.2, 7.30, 7.31, 7.40 and 7.50.

Attacker Value

Unknown

CVE-2018-2452

Disclosure Date: September 11, 2018 (last updated November 27, 2024)

The logon application of SAP NetWeaver AS Java 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50 does not sufficiently encode user-controlled inputs, resulting in a cross-site scripting (XSS) vulnerability.

Attack Vector: Network Privileges: None User Interaction: Required

32 Total Results

Displaying 31-32 of 32

Unknown

CVE-2018-2492

Unknown

CVE-2018-2452

Quick Cookie Notification