VYPR

Netweaver Development Infrastructure

by SAP

CVEs (2)

  • CVE-2022-29618Jun 14, 2022
    risk 0.00cvss epss 0.01

    Due to insufficient input validation, SAP NetWeaver Development Infrastructure (Design Time Repository) - versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to inject script into the URL and execute code in the user’s browser. On successful exploitation, an…

  • CVE-2013-6820Nov 20, 2013
    risk 0.00cvss epss 0.04

    Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure (NWDI) allows remote attackers to execute arbitrary code by uploading a file with an executable extension via unspecified vectors.