Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / sap

sap

1,568 tracked vulnerabilities.

CVE-2016-6148 HIGH

SAP HANA DB <1.00.73.00.389160 - DoS/RCE

CVE-2016-6147 CRITICAL

SAP TREX 7.10 Revision 63 - Remote Command Execution

CVE-2016-6145 MEDIUM

SAP HANA DB <1.00.091.00.1418659308 - SQL Injection

CVE-2016-6144 HIGH

SAP HANA <Revision 102 - SQL Injection

CVE-2016-6140 CRITICAL

SAP TREX 7.10 Revision 63 - Arbitrary File Write via RFC-Gateway

CVE-2016-6139 CRITICAL

SAP TREX 7.10- Revision 63 - Info Disclosure

CVE-2016-6138 CRITICAL

SAP TREX 7.10 Revision 63 - Path Traversal

CVE-2016-3640 MEDIUM

SAP HANA DB <1.00.091.00.1418659308 - Info Disclosure

CVE-2016-4018 HIGH

SAP HANA - Improper Access Control in Data Provisioning Agent

CVE-2016-4017 HIGH

SAP HANA - Denial of Service via Data Provisioning Agent

CVE-2016-4016 MEDIUM

SAP Manufacturing Integration and Intelligence 15 - Cross-Site Scripting via Title Parameter

CVE-2016-4015 HIGH

SAP NetWeaver JAVA AS 7.1-7.4 - Denial of Service via Crafted Request

CVE-2016-4014 HIGH

SAP NetWeaver JAVA AS 7.4 - XML External Entity Injection in UDDI Component

CVE-2016-3980 HIGH

SAP Application Server Java 7.2-7.4 - Denial of Service via Crafted HTTP Request

CVE-2016-3979 HIGH

SAP Java AS 7.2-7.4 - Denial of Service via IctParseCookies HTTP Request

CVE-2016-3976 HIGH KEV

SAP NetWeaver AS Java <7.6 - Path Traversal

CVE-2016-3975 MEDIUM

SAP NetWeaver AS Java 7.1-7.5 - Cross-Site Scripting via NavigationURLTester

CVE-2016-3974 CRITICAL

SAP NetWeaver Application Server Java 7.10-7.50 - XML External Entity Injection via ServerNodesWSService

CVE-2016-3973 MEDIUM

SAP NetWeaver Java AS <7.5 - Info Disclosure

CVE-2016-2536 HIGH

SAP 3D Visual Enterprise Viewer - Remote Code Execution via Crafted SketchUp Document

CVE-2016-2389 HIGH NUCLEI

SAP NetWeaver xMII 15.0 - Directory Traversal via GetFileList Path Parameter

CVE-2016-2388 MEDIUM KEV

SAP NetWeaver AS JAVA 7.10-7.50 - Exposure of Sensitive Information via Universal Worklist Configuration

CVE-2016-2387 MEDIUM

SAP NetWeaver 7.4 - Cross-Site Scripting via ProxyServer Servlet Parameters

CVE-2016-2386 CRITICAL KEV

SAP NetWeaver Application Server Java 7.40 - SQL Injection

CVE-2016-1929 CRITICAL

SAP HANA - Denial of Service via Log Spoofing in XS Engine

Previous Page 51 of 63 Next

Products

3d_visual_enterprise_viewer 131 netweaver 102 netweaver_application_server_abap 78 businessobjects_business_intelligence_platform 73 netweaver_application_server_java 68 businessobjects_business_intelligence 45 hana 38 solution_manager 33 business_one 31 internet_graphics_server 28 3d_visual_enterprise_author 27 businessobjects 23 netweaver_abap 21 netweaver_process_integration 21 netweaver_enterprise_portal 20 business_objects_business_intelligence_platform 18 commerce_cloud 18 hana_extended_application_services 18 sap_basis 18 s\/4hana 17 disclosure_management 16 host_agent 15 adaptive_server_enterprise 14 enable_now 14 s4core 13 abap_platform 12 customer_relationship_management_webclient_ui 12 netweaver_as_abap 12 sap_db 12 sap_kernel 11

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy