| Page(s) : 1 ... 10 11 12 13 14 15 16 17 18 19 [20] 21 22 23 24 25 26 27 28 29 30 ... | Result(s) : 151085 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-08-14 | CVE-2019-0346 | cve | Unencrypted communication error in SAP Business Objects Business Intelligence Platform (Central Management Console), version 4.2, leads to disclosure of list of user names and r... |
| N/A | 2019-08-14 | CVE-2019-0345 | cve | A remote unauthenticated attacker can abuse a web service in SAP NetWeaver Application Server for Java (Administrator System Overview), versions 7.30, 7.31, 7.40, 7.50, by sendi... |
| N/A | 2019-08-14 | CVE-2019-0344 | cve | Due to unsafe deserialization used in SAP Commerce Cloud (virtualjdbc extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, it is possible to execute arbitrary code on a ta... |
| N/A | 2019-08-14 | CVE-2019-0343 | cve | SAP Commerce Cloud (Mediaconversion Extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/HMC user to inject code that can be executed by... |
| N/A | 2019-08-14 | CVE-2019-0341 | cve | The session cookie used by SAP Enable Now, version 1902, does not have the HttpOnly flag set. If an attacker runs script code in the context of the application, he could get acc... |
| N/A | 2019-08-14 | CVE-2019-0340 | cve | The XML parser, which is being used by SAP Enable Now, before version 1902, has not been hardened correctly, leading to Missing XML Validation vulnerability. This issue affects ... |
| N/A | 2019-08-14 | CVE-2019-0338 | cve | During an OData V2/V4 request in SAP Gateway, versions 750, 751, 752, 753, the HTTP Header attributes cache-control and pragma were not properly set, allowing an attacker to acc... |
| N/A | 2019-08-14 | CVE-2019-0337 | cve | Java Proxy Runtime of SAP NetWeaver Process Integration, versions 7.10, 7.11, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs and allows an attacker ... |
| N/A | 2019-08-14 | CVE-2019-0335 | cve | Under certain conditions SAP BusinessObjects Business Intelligence Platform (Central Management Console), versions 4.1, 4.2, 4.3, allows an attacker to store a malicious payload... |
| N/A | 2019-08-14 | CVE-2019-0334 | cve | When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when execut... |
| N/A | 2019-08-14 | CVE-2019-0333 | cve | In some situations, when a client cancels a query in SAP BusinessObjects Business Intelligence Platform (Web Intelligence), versions 4.2, 4.3, the attacker can then query and re... |
| 4.3 | 2019-08-14 | CVE-2019-0332 | cve | SAP BusinessObjects Business Intelligence Platform (Info View), versions 4.1, 4.2, 4.3, allows an attacker to give some payload for keyword in the search and it will be executed... |
| N/A | 2019-08-14 | CVE-2019-0331 | cve | Under certain conditions, SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, allows an attacker to access sensitive data such as director... |
| 6.8 | 2019-08-14 | CVE-2018-20968 | cve | The wp-ultimate-exporter plugin before 1.4.2 for WordPress has CSRF. |
| 6.8 | 2019-08-14 | CVE-2018-20967 | cve | The wp-ultimate-csv-importer plugin before 5.6.1 for WordPress has CSRF. |
| 7.5 | 2019-08-14 | CVE-2017-18515 | cve | The wp-statistics plugin before 12.0.8 for WordPress has SQL injection. |
| 7.5 | 2019-08-14 | CVE-2017-18514 | cve | The simple-login-log plugin before 1.1.2 for WordPress has SQL injection. |
| 6.8 | 2019-08-14 | CVE-2017-18513 | cve | The responsive-menu plugin before 3.1.4 for WordPress has no CSRF protection mechanism for the admin interface. |
| 6.8 | 2019-08-14 | CVE-2017-18512 | cve | The newsletter-by-supsystic plugin before 1.1.8 for WordPress has CSRF. |
| 6.8 | 2019-08-14 | CVE-2017-18511 | cve | The custom-sidebars plugin before 3.0.8.1 for WordPress has CSRF. |
| Page(s) : 1 ... 10 11 12 13 14 15 16 17 18 19 [20] 21 22 23 24 25 26 27 28 29 30 ... | Result(s) : 151085 |
