CVE-2015-7241
CRITICALSAP NetWeaver < 7.0 - XML External Entity Injection
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2015-7241. PoCs published by Lukasz Miedzinski.
AI-analyzed exploit summary This is a writeup describing an XML External Entity (XXE) Injection vulnerability in SAP NetWeaver. It provides a proof-of-concept XML payload that can be used to extract NTLM hashes via an external entity reference.
Description
XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
Exploits (1)
exploitdb
WRITEUP
by Lukasz Miedzinski · textwebappsxml
https://www.exploit-db.com/exploits/38261
This is a writeup describing an XML External Entity (XXE) Injection vulnerability in SAP NetWeaver. It provides a proof-of-concept XML payload that can be used to extract NTLM hashes via an external entity reference.
Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
SAP NetWeaver <7.01
Auth required
Prerequisites:
Access to SAP NetWeaver administration interface · Ability to intercept SMB traffic (e.g., via Metasploit's smb_capture module)
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/133627/SAP-Netweaver-XML-External-Entity-Injection.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/536504/100/0/threaded
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/38261/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76809
Scores
CVSS v3
9.8
EPSS
0.2738
EPSS Percentile
96.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-611
Status
published
Products (1)
sap/netweaver
< 7.0
Published
Sep 06, 2017
Tracked Since
Feb 18, 2026