📦 Business One
by Sap
🔍 What is Business One?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability in SAP Business One version 10.0 allows unauthenticated attackers to read, write, and execute files on SMB shared folders used during installation. Any organization running the vuln...
CVE-2023-39437 is a cross-site scripting (XSS) vulnerability in SAP Business One version 10.0 that allows attackers to inject malicious scripts into web pages. When exploited, this can compromise user...
This SQL injection vulnerability in SAP Business One's B1i module allows authenticated users with deep knowledge to craft malicious queries that can read or modify SQL data. Successful exploitation ca...
CVE-2022-31593 is a code injection vulnerability in SAP Business One client version 10.0 that allows authenticated attackers with low privileges to execute arbitrary code within the application. This ...
This vulnerability in SAP Business One integration with SAP HANA allows attackers to access HANA cockpit's data volume containing sensitive information like high-privileged credentials. It affects SAP...
This vulnerability allows authenticated users with business authorization in SAP Business One to upload arbitrary files, including malicious scripts, due to insufficient file format validation. Attack...
CVE-2021-27616 is an information disclosure vulnerability in SAP Business One Hana Chef Cookbook that allows attackers to access restricted information through insecure temporary backup paths. This af...
SAP Business One writes sensitive information to memory dump files without obfuscation, allowing attackers who access these files to potentially perform unauthorized operations and modify company data...