Cross site scripting

2017-12-1214:29:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

45.8%

JSON

Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence Promotion Management Application, Enterprise 4.10, 4.20, 4.30, as user controlled inputs are not sufficiently encoded.

CPENameOperatorVersion
business_intelligence_promotion_management_applicationeq4.30
business_intelligence_promotion_management_applicationeq4.20
business_intelligence_promotion_management_applicationeq4.10

Name	Operator	Version
business_intelligence_promotion_management_application	eq	4.30
business_intelligence_promotion_management_application	eq	4.20
business_intelligence_promotion_management_application	eq	4.10