
Note# | Title | Priority | CVSS |
2476601 | Update to Security Note released on July 2017 Patch Day: Missing Authentication checks in SAP Point of Sale (POS) Retail Xpress Server | High | 8.1 |
2520064 | Out of band Security Note released on 18 Aug, 2017: Missing Authentication checks in SAP Point of Sale (POS) Retail Xpress Server | High | 8.1 |
2367269 | Cross-Site Request Forgery (CSRF) vulnerability in Electronic Ledger Management for Turkey 1.0 | High | 7.6 |
2492658 | Missing XML Validation vulnerability in SAP NetWeaver Java Workflow (JWF) | Medium | 6.9 |
2507798 | Bypass of email verification in e-recruiting | Medium | 6.5 |
2342974 | Arbitrary Valid Certificate Vulnerability in Adobe Document Services | Medium | 6.5 |
2491480 | Cross-Site Scripting (XSS) vulnerability in SAP Netweaver Portal | Medium | 6.1 |
2488516 | Cross-Site Scripting (XSS) vulnerability in Web Dynpro ABAP | Medium | 6.1 |
2471209 | Cross-Site Scripting (XSS) vulnerability in SAPGUI for HTML | Medium | 6.1 |
2469860 | Cross-Site Scripting (XSS) vulnerability in Web Dynpro Java | Medium | 6.1 |
2464489 | Cross-Site Scripting (XSS) vulnerability in BIWorkspace | Medium | 6.1 |
2408073 | Handling of Digitally Signed notes in SAP Note Assistant | Medium | 5.5 |
2489196 | Information Disclosure in TREX / BWA | Medium | 5.5 |
2365450 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver SLC Sell Side Registration Page | Medium | 5.4 |
2444673 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Development Infrastructure Cockpit | Medium | 5.4 |
2453642 | Update to Security Note released on August 2017 Patch Day: SQL Injection vulnerability in SAP NetWeaver | Medium | 4.7 |
2524134 | Update 1 to 2423540: URL Redirection Vulnerability in SAP NetWeaver Logon Application | Medium | 4.3 |
2423540 | Update to Security Note released on August 2017 Patch Day: URL Redirection Vulnerability in SAP NetWeaver Logon Application | Medium | 4.3 |
2484707 | Multiple vulnerabilities In SAP BI mobile application | Medium | 4.1 |
2296722 | Update to Security Note released on May 2016 Patch Day: Information Disclosure vulnerability in SAP ASE Installer | Medium | 4.0 |
2374348 | Update to Security Note released on January 2017 Patch Day: Information Disclosure in DBISQL affecting SAP SQL Anywhere, SAP ASE and SAP IQ | Low | 3.9 |
2528596 | Hard-coded Credentials in SAP Point of Sale Store Manager | Low | 3.9 |
2483143 | Information Disclosure in SAP NetWeaver Adapter Engine Cache Monitor | Low | 3.5 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
3 | |
2 | |
2 | |
2 | |
2 | |
1 | |
1 | |
1 | |
1 |