Posted by Onapsis Research via Fulldisclosure on Jun 14

# Onapsis Security Advisory 2021-0006: [CVE-2020-26811] – SAP Hybris
eCommerce – SSRF in acceleratorservices module

## Impact on Business

SAP Hybris *acceleratorservices* module is vulnerable to be used to make custom
POST requests to any valid URL without authentication.

## Advisory Information

– Public Release Date: 06/14/2021
– Security Advisory ID: ONAPSIS-2021-006
– Researcher: Gaston Traberg

## Vulnerability Information

– Vendor: SAP…
Read More – Full Disclosure

By |2021-06-14T17:19:20-04:00June 14th, 2021|