Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-27674 |
|
Code Injection in sap (CVE-2026-27674)
code injection in sap (CVE-2026-27674). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15296 |
|
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
|
| CVE-2017-15294 |
|
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
|
| CVE-2017-14581 |
|
Vulnerability in dos (CVE-2017-14581)
vulnerability in dos (CVE-2017-14581). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11457 |
|
XXE (XML External Entity) in ssrf (CVE-2017-11457)
vulnerability in ssrf (CVE-2017-11457). Confidential information can be exposed externally.
|
| CVE-2017-11458 |
|
Cross-Site Scripting (XSS) in sap (CVE-2017-11458)
cross-site scripting in sap (CVE-2017-11458). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8913 |
|
XXE (XML External Entity) in sap (CVE-2017-8913)
vulnerability in sap (CVE-2017-8913). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7696 |
|
Vulnerability in dos (CVE-2017-7696)
vulnerability in dos (CVE-2017-7696). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7717 |
|
SQL Injection in sqli (CVE-2017-7717)
SQL injection in sqli (CVE-2017-7717). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10304 |
|
Unsafe Deserialization in dos (CVE-2016-10304)
vulnerability in dos (CVE-2016-10304). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5372 |
|
Information Disclosure in sap (CVE-2017-5372)
vulnerability in sap (CVE-2017-5372). Confidential information can be exposed externally.
|