• info
• discussion
• exploit
• solution
• references

SAP Business Connector Remote Arbitrary File Access And Deletion Vulnerability


This issue can be exploited with a web client.

Proof-of-concept examples are available:

• /data/vulnerabilities/exploits/SAPBC_poc.txt