Threat Post

SAP Patches 12 SQL Injection, XSS Vulnerabilities in HANA

SAP patched a dozen holes in its in-memory management system HANA that could have led to SQL injections, cross-site scripting (XSS) errors, and memory corruption vulnerabilities. SAP patched a dozen ...

Patch Day SAP CRM, S/4HANA: Attackers can damage databases

Due to a bug, authenticated attackers can execute SQL statements in the context of CRM and SAP S/4HANA (Scripting Editor), ...