• 日期:2019-01-09
  • 类别:
  • 作者:FlyingFrog
  • 语法:inurl:infoviewapp
  • AUTHOR: FlyingFrog
    Twitter: @ItsKarl0z

    ++ SAP InfoView Business Objects ++

    - Potential access to sensitive information
    - Login portals
    - Server entry points
    - Server
    - Potential to manipulate business objects
    - 2 Cross-Site Scripting Vulnerabillites available:
    - 3.680 results at the time of writing

    (The vulnerabilities are suggestions, none of them have been tested by me,
    always request permission before testing anything on someone else system)
    Some of these are sourced from Onapsis, ERPscan and Rapid7 all have great sources on SAP testing