Arbitrary SQL Command Execution Vulnerability in SAP NetWeaver 7.30

Arbitrary SQL Command Execution Vulnerability in SAP NetWeaver 7.30

CVE-2013-6869 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in the SRTT_GET_COUNT_BEFORE_KEY_RFC function in SAP NetWeaver 7.30 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.