Description
A hard-coded username contains code which changes the program#s behavior when a user successfully authenticates with a certain username.
Available fix and Supported packages
- ERECRUIT | 300 | 300
- ERECRUIT | 600 | 600
- ERECRUIT | 603 | 603
- ERECRUIT | 604 | 604
- ERECRUIT | 605 | 605
- ERECRUIT 605 | SAPK-60502INERECRUIT |
- ERECRUIT 300 | SAPK-30024INERECRUIT |
- ERECRUIT 600 | SAPK-60019INERECRUIT |
- ERECRUIT 603 | SAPK-60308INERECRUIT |
- ERECRUIT 604 | SAPK-60409INERECRUIT |
Affected component
- PA-ER
E-Recruiting
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1503843