mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
933 B
933 B
CVE-2022-1248
Description
A vulnerability was found in SAP Information System 1.0 which has been rated as critical. Affected by this issue is the file /SAP_Information_System/controllers/add_admin.php. An unauthenticated attacker is able to create a new admin account for the web application with a simple POST request. Exploit details were disclosed.
POC
Reference
- http://packetstormsecurity.com/files/166609/SAP-Information-System-1.0.0-Missing-Authorization.html
- https://vuldb.com/?id.196550