Breaking SAP Portal - Proidea
Breaking SAP Portal - Proidea
Breaking SAP Portal - Proidea
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
XXE in <strong>Portal</strong>: Details<br />
• Injection of malicious requests into XML packets<br />
• Can lead to unauthorized file read, DoS, SSRF<br />
• There is an XXE vulnerability in <strong>SAP</strong> <strong>Portal</strong><br />
• Can be exploited by modification of POST request<br />
• It is possible to read any file from OS and much more