SAP Internet Graphics Server 漏洞列表

共找到 2 个与 SAP Internet Graphics Server 相关的漏洞

📅 加载漏洞趋势中...

CVE-2018-2392: SAP Internet Graphics Server (IGS) - XML External Entity Injection POC

日期: 2025-08-01 | 影响软件: SAP Internet Graphics Server

SAP Internet Graphics Servers (IGS) running versions 7.20, 7.20EXT, 7.45, 7.49, or 7.53 has two XML external entity injection (XXE) vulnerabilities within the XMLCHART page - CVE-2018-2392 and CVE-2018-2393. These vulnerabilities occur due to a lack of appropriate validation on the Extension HTML tag when submitting a POST request to the XMLCHART page to generate a new chart.
CVE-2018-2392: SAP Internet Graphics Server (IGS) - XML External Entity Injection POC

日期: 2025-08-01 | 影响软件: SAP Internet Graphics Server

SAP Internet Graphics Servers (IGS) running versions 7.20, 7.20EXT, 7.45, 7.49, or 7.53 has two XML external entity injection (XXE) vulnerabilities within the XMLCHART page - CVE-2018-2392 and CVE-2018-2393. These vulnerabilities occur due to a lack of appropriate validation on the Extension HTML tag when submitting a POST request to the XMLCHART page to generate a new chart.