CVE-2025-42998 – SAP Business One Authentication Bypass

June 9, 2025

CVE ID : CVE-2025-42998

Published : June 10, 2025, 1:15 a.m. | 23 minutes ago

Description : The security settings in the SAP Business One Integration Framework are not adequately checked, allowing attackers to bypass the 403 Forbidden error and access restricted pages. This leads to low impact on confidentiality of the application, there is no impact on integrity and availability.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5906 – Code-projects Laundry System Remote Authentication Bypass

Next Article CVE-2025-42996 – SAP MDM Server Session Hijacking Vulnerability

Highlights

CVE-2025-48740 – StrangeBee TheHive CSRF

May 23, 2025

CVE ID : CVE-2025-48740

Published : May 23, 2025, 8:15 p.m. | 37 minutes ago

Description : A Cross-Site Request Forgery (CSRF) vulnerability in StrangeBee TheHive 5.2.0 before 5.2.16, 5.3.0 before 5.3.11, 5.4.0 before 5.4.10, and 5.5.0 before 5.5.1 allows a remote attacker to trigger requests on their victim’s behalf, if the attacker lures a privileged user, authenticated with basic authentication.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-42998 – SAP Business One Authentication Bypass

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

CVE-2025-27151 – Redis Stack-Based Buffer Overflow Vulnerability

Active Directory dMSA Privilege Escalation Attack Detailed by Researchers

U.S. Banking Associations Petition SEC to Rescind Cyber Breach Reporting Mandate

Optimizing Actions with Laravel’s Fluent Class

CVE-2025-48740 – StrangeBee TheHive CSRF

Rilasciata AlmaLinux 10 “Purple Lion”: tutte le novità della nuova versione compatibile con RHEL 10

CVE-2022-43659 – Apache HTTP Server Cross-Site Scripting

CVE-2025-4291 – IdeaCMS Unrestricted File Upload Vulnerability

CVE-2025-42998 – SAP Business One Authentication Bypass

Related Posts