SAP fixes suspected Netweaver zero-day exploited in attacks

April 25, 2025

SAP fixes suspected Netweaver zero-day exploited in attacks

SAP has released out-of-band emergency NetWeaver updates to fix a suspected remote code execution (RCE) zero-day flaw actively exploited to hijack servers.
The vulnerability, tracked under CVE-2025-31 …

Published Date:
Apr 25, 2025 (1 hour, 9 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-31324

CVE-2025-31330

CVE-2025-27429

Source: Read More

Previous ArticleUbuntu 24.04 Now Available for OrangePi’s New RISC-V SBC

Next Article CVE-2025-34028 impacts Commvault Command Center

Highlights

CVE-2012-10052 – EGallery Arbitrary File Upload RCE

August 8, 2025

CVE ID : CVE-2012-10052

Published : Aug. 8, 2025, 7:15 p.m. | 6 hours, 9 minutes ago

Description : EGallery version 1.2 contains an unauthenticated arbitrary file upload vulnerability in the uploadify.php script. The application fails to validate file types or enforce authentication, allowing remote attackers to upload malicious PHP files directly into the web-accessible egallery/ directory. This results in full remote code execution under the web server context.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Value-Driven AI Roadmap

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

‘Job Hugging’ Trend Emerges as Workers Confront AI Uncertainty

Distribution Release: MocaccinoOS 25.09

Composition in CSS

DataCrunch raises €55M to boost EU AI sovereignty with green cloud infrastructure

Finally, safe array methods in JavaScript

Finally, safe array methods in JavaScript

Perficient Interviewed for Forrester Report on AI’s Transformative Role in DXPs

Perficient’s “What If? So What?” Podcast Wins Gold Stevie® Award for Technology Podcast

Distribution Release: MocaccinoOS 25.09

Distribution Release: MocaccinoOS 25.09

Speed Isn’t Everything When Buying SSDs – Here’s What Really Matters!

14 Themes for Beautifying Your Ghostty Terminal

SAP fixes suspected Netweaver zero-day exploited in attacks

SAP fixes suspected Netweaver zero-day exploited in attacks

Qantas Airways Slashes CEO Bonus After Cyberattack Exposes 5.7 Million Customers

UAE Cyber Security Council Flags 70% Smart Home Devices as Vulnerable

CVE-2025-54310 – qBittorrent Local File Disclosure

Journals and Contents: Two Special Pages in Logseq

CVE-2025-32821 – SMA100 Command Injection Vulnerability

CVE-2025-4721 – iSourcecode Placement Management System SQL Injection

CVE-2012-10052 – EGallery Arbitrary File Upload RCE

Apache Parquet exploit tool detect servers vulnerable to critical flaw

5 Reasons Device Management Isn’t Device Trust

Designer Spotlight: Bimo Tri

SAP fixes suspected Netweaver zero-day exploited in attacks

SAP fixes suspected Netweaver zero-day exploited in attacks

Related Posts