writeups.xyz writeups.xyz / SAP

Title Vulnerabilities Programs Authors
SAPwned: SAP AI vulnerabilities expose customers’ cloud environments and private AI artifacts
Chained to hit: Discovering new vectors to gain remote and root access in SAP Enterprise Software
Patch bypass for [CVE-2020-6369] Hard-coded Credentials in CA Introscope Enterprise Manager
Advanced Inter-Process Desynchronization in SAP’s HTTP Server
ICMAD SAP Vulnerabilities (CVE-2022-22536, CVE-2022-22532 & CVE-2022-22533)
Security and Privacy of Social Logins (II): PostMessage Security in Single Sign-On
An interesting XXE in SAP.