cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-6249,https://securityvulnerability.io/vulnerability/CVE-2020-6249,SQL Injection Vulnerability in SAP Master Data Governance,"The vulnerability within SAP Master Data Governance arises from the improper handling of crafted database queries via the admin backend report. This imperfection allows attackers to execute unauthorized queries, potentially exposing sensitive data and back-end database structures. The affected versions suffer from flawed input validation, which can be exploited to manipulate the database, resulting in significant security risks. Organizations using these versions should prioritize remediation to mitigate potential attacks.",SAP,"SAP Master Data Governance (s4core),SAP Master Data Governance (s4fnd),SAP Master Data Governance (SAP Bs Fnd)",7.7,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2020-05-12T17:48:30.000Z,0
CVE-2019-0244,https://securityvulnerability.io/vulnerability/CVE-2019-0244,,"SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.",SAP,"SAP Crm Webclient Ui (SAPscore),SAP Crm Webclient Ui (s4fnd),SAP Crm Webclient Ui (webcuif)",5.4,MEDIUM,0.0006399999838322401,false,,false,false,false,,,false,false,,2019-01-08T20:00:00.000Z,0
CVE-2019-0245,https://securityvulnerability.io/vulnerability/CVE-2019-0245,,"SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.",SAP,"SAP Crm Webclient Ui (SAPscore),SAP Crm Webclient Ui (s4fnd),SAP Crm Webclient Ui (webcuif)",5.4,MEDIUM,0.0006399999838322401,false,,false,false,false,,,false,false,,2019-01-08T20:00:00.000Z,0
CVE-2018-2364,https://securityvulnerability.io/vulnerability/CVE-2018-2364,,"SAP CRM WebClient UI 7.01, 7.31, 7.46, 7.47, 7.48, 8.00, 8.01, S4FND 1.02, does not sufficiently validate and/or encode hidden fields, resulting in Cross-Site Scripting (XSS) vulnerability.",SAP,"SAP Crm Webclient Ui,S4fnd",6.1,MEDIUM,0.0010499999625608325,false,,false,false,false,,,false,false,,2018-02-14T12:00:00.000Z,0