Showing 1 - 1 of 1

CVE-2020-26811

Status Candidate

Overview

SAP Commerce Cloud (Accelerator Payment Mock), versions - 1808, 1811, 1905, 2005, allows an unauthenticated attacker to submit a crafted request over a network to a particular SAP Commerce module URL which will be processed without further interaction, the crafted request leads to Server Side Request Forgery attack which could lead to retrieval of limited pieces of information about the service with no impact on integrity or availability.

Related Files

SAP Hybris eCommerce Server-Side Request Forgery: Posted Jun 15, 2021; Authored by Gaston Traberg | Site onapsis.com; An unauthenticated server-side request forgery vulnerability exists in SAP Hybris acceleratorservices. This means that anyone accessing this extension is able to use it to make arbitrary HTTP requests, bypassing network restrictions. Versions affected include 1808, 1811, 1905, and 2005.; tags | advisory, web, arbitrary; advisories | CVE-2020-26811; SHA-256 | b53e0a33c20b6b6c42760d7b7dbb5e3ba1657246bda4b65bb14054a620c16d7d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 234 files
Ubuntu 78 files
Debian 22 files
Gentoo 15 files
tmrswrr 6 files
Jann Horn 4 files
Google Security Research 4 files
Amit Roy 4 files
Furkan Eren Tetik 3 files
ron190 3 files

File Archives

Systems

AIX (429)
Apple (2,089)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,073)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,515)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,207)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,190)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,613)
UNIX (9,424)
UnixWare (187)
Windows (6,665)
Other

CVE-2020-26811

Overview

Related Files

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems