CVE-2014-8668

SQL injection vulnerability in SAP Contract Accounting allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Date published : 2014-11-06

http://www.securityfocus.com/bid/71032

http://blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/