Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1505967-1)
SAP Support Packages
(SAPK-50019INSCMBASIS, SAPK-51018INSCMBASIS, SAPK-70009INSCMBASIS, SAPK-70102INSCMBASIS, SAPKY40022, SAPKY41021)
Описание
The problem is caused by an SQL injection vulnerability. The code composes an SQL statement including strings that can be altered by a malicious user. The manipulated SQL statement can then be used to retrieve data from the database.
Как исправить
Implement the attached source code corrections.
Ссылки