CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Prion•added 2022/04/12 5:15 p.m.•12 views

Cross site scripting

SAP BusinessObjects Business Intelligence Platform BI Workspace - version 420, is susceptible to a Cross-Site Scripting attack by an unauthenticated attacker due to improper sanitization of the user inputs on the network. On successful exploitation, an attacker can access certain reports causing ...

4.3CVSS6AI score0.01898EPSS

Exploits0References2Affected Software1

Prion•added 2019/08/14 2:15 p.m.•22 views

Information disclosure

Under certain conditions, SAP BusinessObjects Business Intelligence Platform BI Workspace, versions 4.1, 4.2, 4.3, allows an attacker to access sensitive data such as directory structure, leading to Information Disclosure...

5CVSS5.2AI score0.00206EPSS

Exploits0References2Affected Software1

Prion•added 2019/08/14 2:15 p.m.•18 views

Cross site scripting

When creating a module in SAP BusinessObjects Business Intelligence Platform BI Workspace, versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other...

4.9CVSS5.6AI score0.00221EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/08/14 1:48 p.m.•17 views

CVE-2019-0334

5.6AI score0.00221EPSS

Exploits0References2

Cvelist•added 2019/08/14 1:43 p.m.•23 views

CVE-2019-0331

5.2AI score0.00206EPSS

Exploits0References2

Prion•added 2019/07/10 8:15 p.m.•14 views

Cross site scripting

SAP BusinessObjects Business Intelligence Platform BI Workspace Enterprise, versions 4.1, 4.2, 4.3, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

4.3CVSS5.9AI score0.00287EPSS

Exploits0References3Affected Software1

Cvelist•added 2019/07/10 7:7 p.m.•17 views

CVE-2019-0326

6AI score0.00287EPSS

Exploits0References3

Prion•added 2019/03/12 10:29 p.m.•20 views

Cross site scripting

SAP BusinessObjects Business Intelligence Platform BI Workspace, versions 4.10 and 4.20, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

3.5CVSS5.3AI score0.00264EPSS

Exploits0References3Affected Software1

OSV•added 2019/03/12 10:29 p.m.•2 views

CVE-2019-0269

SAP BusinessObjects Business Intelligence Platform BI Workspace, versions 4.10 and 4.20, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

5.4CVSS5.8AI score

Exploits0References3

CVE•added 2019/03/12 10:0 p.m.•56 views

CVE-2019-0269

CVE-2019-0269 describes a cross-site scripting vulnerability in SAP BusinessObjects BI Platform (BI Workspace) affecting versions 4.10 and 4.20 . It results from insufficient encoding of user-controlled inputs , enabling potential execution of arbitrary script in a user’s browser within the affec...

5.4CVSS5.3AI score0.00264EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by