Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap financial consolidation 10.1 vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2019-0369
SAP Financial Consolidation, prior to 10.0 and 10.1, does not sufficiently encode user-controlled inputs, which allows an malicious user to execute scripts by uploading files containing malicious scripts, leading to reflected cross site scripting vulnerability.
Sap Financial Consolidation 10.0
Sap Financial Consolidation 10.1
6.4
CVSSv2
CVE-2019-0370
Due to missing input validation, SAP Financial Consolidation, prior to 10.0 and 10.1, enables an malicious user to use crafted input to interfere with the structure of the surrounding query leading to XPath Injection.
Sap Financial Consolidation 10.0
Sap Financial Consolidation 10.1
4.3
CVSSv2
CVE-2018-2444
SAP BusinessObjects Financial Consolidation, versions 10.0, 10.1, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Businessobjects Financial Consolidation 10.1
Sap Businessobjects Financial Consolidation 10.0
5
CVSSv2
CVE-2022-26104
SAP Financial Consolidation - version 10.1, does not perform necessary authorization checks for updating homepage messages, resulting for an unauthorized user to alter the maintenance system message.
Sap Financial Consolidation 10.1
5
CVSSv2
CVE-2018-2499
A security weakness in SAP Financial Consolidation Cube Designer (BOBJ_EADES fixed in versions 8.0, 10.1) may allow an malicious user to discover the password hash of an admin user.
Sap Financial Consolidation Cube Designer 10.1
Sap Financial Consolidation Cube Designer Bobj Eades 8.0
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started