CVE-2015-7239

Currently unrated

Key Information:

Vendor: SAP
Status: Netweaver J2ee Engine
Vendor: CVE Published:; 18 September 2015

Summary

SQL injection vulnerability in the BP_FIND_JOBS_WITH_PROGRAM function module in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

References

https://erpscan.io/advisories/erpscan-15-021-sap-netweave...

x_refsource_MISC

http://www.securityfocus.com/archive/1/537109/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://seclists.org/fulldisclosure/2015/Dec/66

mailing-listx_refsource_FULLDISC

Timeline

Vulnerability published
Sep 18, 2015
Vulnerability Reserved
Sep 18, 2015