Posted by Onapsis Research via Fulldisclosure on Jan 26

# Onapsis Security Advisory 2021-0026: SAP Enterprise Portal – XSLT
injection

## Impact on Business

This XSLT vulnerability allows an unprivileged authenticated attacker to
execute OS commands as SAP administrator OS-level (sidadm). A successful
attack would
result in a full compromise of the system’s confidentiality, integrity and
availability.

## Advisory Information

– Public Release Date: 01/26/2022
– Security Advisory ID:…
Read More – Full Disclosure


By |2022-01-26T12:19:02-05:00January 26th, 2022|