SAP Manufacturing Integration and Intelligence, versions 15.0, 15.1 and 15.2, (Illuminator Servlet) currently does not provide Anti-XSRF tokens. This might lead to XSRF attacks in case the data is being posted to the Servlet from an external application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap manufacturing integration and intelligence 15.2 |
||
sap manufacturing integration and intelligence 15.0 |
||
sap manufacturing integration and intelligence 15.1 |