Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / sap

sap

1,568 tracked vulnerabilities.

CVE-2018-2417 MEDIUM

SAP Identity Management 8.0 - Info Disclosure

CVE-2018-2416 MEDIUM

SAP Identity Management 7.2 and 8.0 - XML External Entity Injection

CVE-2018-2415 MEDIUM

SAP NetWeaver Application Server Java Web Container - Content Spoofing

CVE-2018-2413 MEDIUM

SAP Disclosure Management 10.1 - Authenticated Missing Authorization

CVE-2018-2412 LOW

SAP Disclosure Management 10.1 - Authenticated Privilege Escalation

CVE-2018-2410 MEDIUM

SAP Business One 9.2, 9.3 - Cross-Site Scripting via Browser Access Input

CVE-2018-2409 MEDIUM

SAP Cloud Platform 2.0 - Info Disclosure

CVE-2018-2408 HIGH

SAP Business Objects <4.10-4.30 - Privilege Escalation

CVE-2018-2406 MEDIUM

SAP Crystal Reports Server 4.0-4.30 - Unquoted Search Path Vulnerability

CVE-2018-2405 MEDIUM

SAP Solution Manager 7.10, 7.20 - Stored Cross-Site Scripting via Incident Management Attachment Upload

CVE-2018-2404 MEDIUM

SAP Disclosure Management 10.1 - Unrestricted Upload of File with Dangerous Type

CVE-2018-2403 MEDIUM

SAP Disclosure Mgmt 10.1 - Info Disclosure

CVE-2018-2402 HIGH

SAP HANA 1.00 and 2.00 - Unauthorized Exposure of User Credentials in Indexserver Trace Files

CVE-2018-2399 MEDIUM

SAP Process Monitoring Infrastructure 7.10-7.11, 7.20, 7.30-7.31, 7.40, 7.50 - Cross-Site Scripting

CVE-2018-2398 HIGH

SAP Business Client 6.5 - Info Disclosure

CVE-2018-2397 MEDIUM

SAP BusinessObjects Business Intelligence Platform 4.00-4.30 - Cross-Site Scripting in Central Management Console

CVE-2018-2380 MEDIUM KEV

SAP CRM 7.01-7.02, 7.30-7.31, 7.33, 7.54 - Path Traversal

CVE-2018-2368 CRITICAL

SAP NetWeaver System Landscape Directory LM-CORE 7.10-7.40 - Missing Authentication for Critical Function

CVE-2018-2367 HIGH

SAP BASIS 7.00-7.02, 7.10-7.11, 7.30, 7.31, 7.40, 7.50-7.52 - Path Traversal in ABAP File Interface

CVE-2018-2365 MEDIUM

SAP NetWeaver Portal 7.30, 7.31, 7.40, 7.50 - Cross-Site Scripting

CVE-2018-2396 MEDIUM

SAP Internet Graphics Server 7.20 7.20EXT 7.45 7.49 7.53 - Denial of Service via IGS Interpreter Service

CVE-2018-2395 HIGH

SAP Internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49, 7.53 - Information Disclosure and Arbitrary File Write

CVE-2018-2394 MEDIUM

SAP Internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49, 7.53 - Unauthenticated Denial of Service

CVE-2018-2393 HIGH

SAP Internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49, 7.53 - XML External Entity Injection

CVE-2018-2392 HIGH NUCLEI

SAP Internet Graphics Server (IGS) XMLCHART XXE

Previous Page 46 of 63 Next

Products

3d_visual_enterprise_viewer 131 netweaver 102 netweaver_application_server_abap 78 businessobjects_business_intelligence_platform 73 netweaver_application_server_java 68 businessobjects_business_intelligence 45 hana 38 solution_manager 33 business_one 31 internet_graphics_server 28 3d_visual_enterprise_author 27 businessobjects 23 netweaver_abap 21 netweaver_process_integration 21 netweaver_enterprise_portal 20 business_objects_business_intelligence_platform 18 commerce_cloud 18 hana_extended_application_services 18 sap_basis 18 s\/4hana 17 disclosure_management 16 host_agent 15 adaptive_server_enterprise 14 enable_now 14 s4core 13 abap_platform 12 customer_relationship_management_webclient_ui 12 netweaver_as_abap 12 sap_db 12 sap_kernel 11

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy