Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap sapscore 1.12 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv3
CVE-2018-2419
SAP Enterprise Financial Services (SAPSCORE 1.11, 1.12; S4CORE 1.01, 1.02; EA-FINSERV 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Sap Sapscore 1.12
Sap Sapscore 1.11
Sap S4core 1.02
Sap S4core 1.01
Sap Ea-finserv 6.18
Sap Ea-finserv 8.0
Sap Ea-finserv 6.05
Sap Ea-finserv 6.16
Sap Ea-finserv 6.04
Sap Ea-finserv 6.06
Sap Ea-finserv 6.17
5.4
CVSSv3
CVE-2019-0244
SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Customer Relationship Management Webclient Ui 8.01
Sap Customer Relationship Management Webclient Ui 7.31
Sap Customer Relationship Management Webclient Ui 7.46
Sap Customer Relationship Management Webclient Ui 7.47
Sap Customer Relationship Management Webclient Ui 7.48
Sap Customer Relationship Management Webclient Ui 8.00
Sap S4fnd 1.02
Sap Sapscore 1.12
1 Article
5.4
CVSSv3
CVE-2019-0245
SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Customer Relationship Management Webclient Ui 7.46
Sap Customer Relationship Management Webclient Ui 7.48
Sap Customer Relationship Management Webclient Ui 8.01
Sap Customer Relationship Management Webclient Ui 7.31
Sap Customer Relationship Management Webclient Ui 7.47
Sap Customer Relationship Management Webclient Ui 8.00
Sap S4fnd 1.02
Sap Sapscore 1.12
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started