sap

1,577 tracked vulnerabilities.

CVE-2005-3634 NUCLEI
SAP Web Application Server 6.10-7.00 - Unauthenticated Session Termination and Open Redirect
Nov 16, 2005
EPSS 0.19
CVE-2005-3635
SAP Web Application Server 6.10-7.00 - Cross-Site Scripting via sap-syscmd and BspApplication Parameters
Nov 16, 2005
EPSS 0.05
CVE-2005-3636
SAP Web Application Server 6.10 - Cross-Site Scripting via Error Pages
Nov 16, 2005
EPSS 0.05
CVE-2005-1691
SAP R/3 < 6.30 - Directory Traversal via HTTP GET Request
Jul 26, 2005
EPSS 0.02
CVE-2003-1033
SAP DB Development Tools 7.x - Privilege Escalation
Apr 15, 2004
EPSS 0.00
CVE-2003-1035
SAP R/3 46C/D - Unauthenticated Account Lockout Bypass via RFC API
Apr 15, 2004
EPSS 0.02
CVE-2003-1036
SAP Internet Transaction Server < 4.6_pl463 - Remote Code Execution via AGate Component Buffer Overflow
Apr 15, 2004
EPSS 0.03
CVE-2003-1037
SAP Internet Transaction Server WGate - Format String Code Execution
Apr 15, 2004
EPSS 0.03
CVE-2003-1038
SAP Internet Transaction Server < 4.6_pl463 - Information Disclosure via AGate ~command Parameter
Apr 15, 2004
EPSS 0.01
CVE-2003-1039
SAP mySAP Business Suite - Remote Code Execution via Long HTTP Host Header
Apr 15, 2004
EPSS 0.03
CVE-2003-0938
SAP DB <7.4.03.27 - Privilege Escalation
Dec 15, 2003
EPSS 0.00
CVE-2003-0939
SAP DB < 7.4.03.27 - Remote Code Execution via Malformed Connect Packet
Dec 15, 2003
EPSS 0.03
CVE-2003-0940
SAP DB < 7.4.03.29 - Directory Traversal via URL
Dec 15, 2003
EPSS 0.02
CVE-2003-0941
SAP DB <7.4.03.30 - Info Disclosure
Dec 15, 2003
EPSS 0.01
CVE-2003-0942
SAP DB < 7.4.03.29 - Buffer Overflow via Web Agent Administration Name Parameter
Dec 15, 2003
EPSS 0.03
CVE-2003-0943
SAP DB <7.4.03.30 - Info Disclosure
Dec 15, 2003
EPSS 0.01
CVE-2003-0944
SAP DB < 7.4.03.29 - Remote Code Execution via WAECHO RequestURI Buffer Overflow
Dec 15, 2003
EPSS 0.03
CVE-2003-0945
SAP DB <7.4.03.30 - Info Disclosure
Dec 15, 2003
EPSS 0.01
CVE-2003-0747
SAP ITS 4620.2.0.323011 - Info Disclosure
Oct 20, 2003
EPSS 0.03
CVE-2003-0748
SAP ITS 4620.2.0.323011 - Path Traversal
Oct 20, 2003
EPSS 0.07
CVE-2003-0749
SAP Internet Transaction Server 4620.2.0.323011 - Cross-Site Scripting via ~service Parameter
Oct 20, 2003
EPSS 0.04
CVE-2003-0265
SAP Database 7.3.0.29 - Privilege Escalation
May 27, 2003
EPSS 0.01
CVE-2002-1576
SAP DB 7.3 - Local Privilege Escalation via lserversrv Path Manipulation
Apr 15, 2004
EPSS 0.01
CVE-2002-1577
SAP R/3 <4.6D - Privilege Escalation
Apr 15, 2004
EPSS 0.01
CVE-2002-1578
SAP R/3 - Unauthenticated Sensitive Data Exposure via Oracle Database Direct Connection
Apr 15, 2004
EPSS 0.03