Sap Internet Transaction Server — known CVE vulnerabilities
Every CVE whose affected-product data names Sap Internet Transaction Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2003-1037 — CVSS 7.5 (high): Format string vulnerability in the WGate component for SAP Internet Transaction Server (ITS) allows remote attackers to execute arbitrary…
CVE-2003-1036 — CVSS 7.5 (high): Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code…
CVE-2006-5114 — CVSS 6.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in wgate in SAP Internet Transaction Server (ITS) 6.1 and 6.2 allow remote attackers to…
CVE-2003-0749 — CVSS 6.8 (medium): Cross-site scripting (XSS) vulnerability in wgate.dll for SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to…
CVE-2018-11415 — CVSS 6.1 (medium): SAP Internet Transaction Server (ITS) 6200.X.X has Reflected Cross Site Scripting (XSS) via certain wgate URIs. NOTE: the vendor has…
CVE-2003-1038 — CVSS 5.0 (medium): The AGate component for SAP Internet Transaction Server (ITS) allows remote attackers to obtain sensitive information via a ~command…
CVE-2003-0748 — CVSS 5.0 (medium): Directory traversal vulnerability in wgate.dll for SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to read…
CVE-2003-0747 — CVSS 5.0 (medium): wgate.dll in SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to obtain potentially sensitive information such…
CVE-2008-2123 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in WGate in SAP Internet Transaction Server (ITS) 6.20 allows remote attackers to inject arbitrary…