VYPR

NetWeaver (Design Time Repository)

by SAP

CVEs (2)

  • CVE-2023-33984Jun 13, 2023
    risk 0.00cvss epss 0.00

    SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain…

  • CVE-2020-6370Oct 20, 2020
    risk 0.00cvss epss 0.01

    SAP NetWeaver Design Time Repository (DTR), versions - 7.11, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.