Credits for Security Researchers

SAP recognizes Onapsis for sharing exploit information leading to the discovery of CVE-2025-42999. SAP appreciates Onapsis collaboration and partnership in responsible disclosure over the years.

Ayman Salem

CAIBERP GmbH(opens in new tab), Jianfeng Wang

Cyberwise A.S., Deniz CEVIK

Daly Whyte, Securify Solutions(opens in new tab)

Dutu Duty

Graham Bevelander(opens in new tab)

Harshvardhan Kumavat(opens in new tab)

Marcin Wyczechowski(opens in new tab), AFINE

Michał Majchrowicz(opens in new tab), AFINE

Muhammad Asif

Onaps is Research Labs

Onaps is Research Labs, Fabian Hagg

Onapsis Research Labs, Yvan Genuer

Raafeh Ur Rehman

Revenger Ali

S ecuri t yBridge, Joris van de Vis

Sharon Brizinov(opens in new tab)

Vaishnavi Pardeshi(opens in new tab)

June 2025

Artur Grochal(opens in new tab)

CAIBERP GmbH(opens in new tab), Jianfeng Wang

Lucsouza

Onaps is Research Labs, Adrian Rădulescu

On aps is Research L abs, Fabian Hagg

S ecuri t yBridge, Joris van de Vis

Shorabh Karir(opens in new tab)

Vahagn Vardanian, RedRays LLC

Wiz.io(opens in new tab), Rami McCarthy

July 2025

Aaditya Wadodkar(opens in new tab)

CAIBERP GmbH, Andreas Wiegenstein

CAIBERP GmbH(opens in new tab), Jianfeng Wang

Ionut Gavrilut(opens in new tab)

Joris van de Vis(opens in new tab)

Marcin Wyczechowski, AFINE

Michał Majchrowicz, AFINE

Onaps is Research Labs, Adrian Rădulescu

On aps is Research L abs, Cristian Scraba

On aps is Research L abs, Fabian Hagg

On aps is R esearch L abs, Ignacio D. Favro

On aps is Research L abs, Pablo Artuso

O n aps is R esearch L abs, Yvan Genuer

Paweł Zdunek(opens in new tab), AF INE

Sai Teja(opens in new tab), Tech Mahindra

S y sArmy, Ha riz

S(opens in new tab)y(opens in new tab)sArmy(opens in new tab), Irwin Tang(opens in new tab)

Tao Sauvage, Anvil Secure(opens in new tab)

August 2025

Bhavya Manvar(opens in new tab)

CGI, Yacine Floret

Diego Alves de Souza(opens in new tab)

Lucas de Souza Silva

Ma(opens in new tab)rcin(opens in new tab)W(opens in new tab)y(opens in new tab)czechowski(opens in new tab), AF(opens in new tab)INE(opens in new tab)

Michał Majchrowicz, AFINE(opens in new tab)

Mohamed Abdellatif Jaber(opens in new tab)

O(opens in new tab)la0(opens in new tab)

On aps is R esearch L abs, Fabian Hagg

P(opens in new tab)a(opens in new tab)weł(opens in new tab)Z(opens in new tab)d(opens in new tab)unek(opens in new tab), AF INE

P u ne e t Kum ar Trip a th i

Qiling Zhang

SecurityBridge(opens in new tab), Gert-Jan Koster

Varad Mahajan(opens in new tab)

SecurityBridge(opens in new tab), Joris van de Vis

zhyar Raouf Ismael(opens in new tab)

September 2025

CAIBERP GmbH(opens in new tab), Hans-Christian Esperer

CAIBERP GmbH, Jianfeng Wang(opens in new tab)

Jamie Davies

Laburity(opens in new tab)

Laxit Raj Roashan(opens in new tab)

Mangesh Muley(opens in new tab)

On aps is R esearch L abs, Cristian Scraba

On aps is R esearch L abs, Fabian Hagg

On aps is R esearch L abs, Pablo Artuso

On aps is R esearch L abs, Yvan Genuer

Rakesh Mali(opens in new tab)

Rocky1316

S(opens in new tab)ecurityBridge(opens in new tab), Joris van de Vis(opens in new tab)

SEC Consult(opens in new tab), Ben Samtleben

SEC Consult(opens in new tab), Bernd Kaufmann

Y(opens in new tab)aswanth(opens in new tab)Ka(opens in new tab)lendra(opens in new tab)

October 2025

Advintx(opens in new tab), Shikha

GitGuardian(opens in new tab), Guillaume Valadon

John Carroll

Karim

Kyry(opens in new tab)lo(opens in new tab) Tkachov(opens in new tab)

Nilson Gabriel (Snillx)(opens in new tab)

Onaps i s Rese a rch Labs, Adrian Rădulescu

Onaps i s Rese a rch Labs, Alina Smirnova

Onaps i s Rese a rch Labs, Cristian Scraba

Onaps i s Rese a rch Labs, Emanuela Ionas

Onaps i s Rese a rch Labs, Fabian Hagg

Onaps i s Rese a rch Labs, Gustavo Arakaki

Onaps i s Rese a rch Labs, Hernán Formoso

Onaps i s Rese a rch Labs, Ignacio Favro

Onaps i s Rese a rch Labs, Juan Pablo Perez Etchegoyen

Onaps i s Rese a rch Labs, Laura Cabrera

Onaps i s Rese a rch Labs, Mati Sena

Onaps i s Rese a rch Labs, Pablo Artuso

Onaps i s Rese a rch Labs, Paul Laudanski

Onaps i s Rese a rch Labs, Yvan Genuer

Roi (opens in new tab)N(opens in new tab)isim(opens in new tab)i(opens in new tab)

S(opens in new tab)ecurity(opens in new tab)Brid(opens in new tab)ge(opens in new tab), J(opens in new tab)or(opens in new tab)is(opens in new tab) (opens in new tab)van (opens in new tab)d(opens in new tab)e(opens in new tab) Vis(opens in new tab)

Th read Security, V ish al Kuma r

Y(opens in new tab)an(opens in new tab)iv(opens in new tab)Shoshani(opens in new tab)

Credits to researchers from previous years are available here.

If you have any comments or feedback about this post, you can write to secure@sap.com.

January 2025

February 2025

March 2025

April 2025

May 2025

June 2025

July 2025

August 2025

September 2025

October 2025

Archives