Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1491359-2)
SAP Support Packages
(SAPK-60019INECCDIMP, SAPK-60209INECCDIMP, SAPK-60308INECCDIMP, SAPK-60409INECCDIMP, SAPK-60502INECCDIMP, SAPKIPMH14)
Описание
The problem is caused by an SQL injection vulnerability. The code composes an SQL statement including strings that can be altered by a malicious user. The manipulated SQL statement can then be used to retrieve additional information from the database or to potentially modify it.
Как исправить
Implement the attached corrections.
Ссылки