漏洞描述
SAP NetWeaver Visual Composer Metadata Uploader是德国思爱普(SAP)公司的一个用于辅助建模的工具。 SAP NetWeaver Visual Composer Metadata Uploader存在代码问题漏洞,该漏洞源于授权不当,可能导致上传恶意可执行文件。
SAP Netweaver metadatauploader 远程代码执行漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2017-12637: SAP NetWeaver Application Server Java 7.5 - Local File Inclusion
- POC CVE-2020-6287: SAP NetWeaver AS JAVA 7.30-7.50 - Remote Admin Addition
- POC CVE-2021-33690: SAP NetWeaver Development Infrastructure - Server Side Request Forgery
- POC CVE-2025-31324: SAP NetWeaver Visual Composer Metadata Uploader - Deserialization
- POC sap-netweaver-backdoor: SAP NetWeaver - Backdoor Detection
- POC sap-netweaver-portal: SAP NetWeaver Portal - Detect
- POC sap-nw-webgui: SAP NetWeaver WebGUI Detection
- SAP Netweaver publicinfo CVE-2022-22536请求走私漏洞
- SAP NETWEAVER远程命令执行漏洞