filetype:cwr inurl:apstoken

GHDB-ID:

5073

Author:

FlyingFrog

Google Dork Description:

filetype:cwr inurl:apstoken

AUTHOR: FlyingFrog
Twitter: @ItsKarl0z


++ SAP crystal reports business enterprise login ++

filetype:cwr inurl:apstoken
- Login portals for crystal reports
- Enterprise reports
- Error messages
- Possible Cross-Site Scripting
    - https://www.exploit-db.com/exploits/32882
- Possible Directory Traversal
    - https://www.exploit-db.com/exploits/16054
- 7 results at the time of writing

DISCLAIMER:
(The vulnerabilities are suggestions, none of them have been tested by me,
always request permission before testing anything on someone else system)
Credit goes to the boys of Rapid7