CVE-2026-44761: CWE-1392: Use of Default Credentials in SAP_SE SAP Commerce Cloud
SAP Commerce Cloud includes a sample OAuth2 client with publicly documented default credentials from SAP Help Portal documentation. If these default credentials are not changed, an unauthenticated…
Read the full articleYou might also wanna read
SAP Issues Critical Security Patches for NetWeaver, Commerce, and Data Hub Vulnerabilities
SAP released 15 new security notes on Tuesday, including four critical-severity fixes affecting NetWeaver, Commerce, and Data Hub. CVE-2026-

CVE-2026-55040: Microsoft SharePoint JWT Token Authentication Bypass (FIXED)
Overview Rapid7 Labs conducted a zero-day research project against Microsoft SharePoint, resulting in the discovery of two new vulnerabiliti
Critical Oracle E-Business Suite Vulnerability CVE-2026-46817 (CVSS 9.8) Actively Exploited
CVE-2026-46817 is a critical Oracle Payments flaw actively exploited in the wild, enabling unauthenticated network access over HTTP to take

WAF - WAF Release - 2025-11-03
This week highlights enhancements to detection signatures improving coverage for vulnerabilities in Adobe Commerce and Magento Open Source,
SAP Patches CVSS 9.9 NetWeaver ABAP Flaw That Could Expose or Modify Data
SAP has rolled out updates to address multiple vulnerabilities as part of its July 2026 security updates, including a critical flaw in SAP N

Comments
Sign in to join the conversation.
No comments yet. Be the first.