CVEs-PoC/2016/CVE-2016-2388.md at f3cb71a247f4a97ff14b1bf0dd2e46d4b16bc4e5

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 23:27:33 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

1.2 KiB

Raw Blame History

CVE-2016-2388

Description

The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.

POC

Reference

http://packetstormsecurity.com/files/137128/SAP-NetWeaver-AS-JAVA-7.5-Information-Disclosure.html
http://packetstormsecurity.com/files/145860/SAP-NetWeaver-J2EE-Engine-7.40-SQL-Injection.html
https://www.exploit-db.com/exploits/39841/
https://www.exploit-db.com/exploits/43495/

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Ostorlab/KEV
https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
https://github.com/lnick2023/nicenice
https://github.com/qazbnm456/awesome-cve-poc
https://github.com/vah13/SAP_exploit
https://github.com/xbl3/awesome-cve-poc_qazbnm456

1.2 KiB Raw Blame History

CVE-2016-2388

Description

POC

Reference

Github

1.2 KiB

Raw Blame History