CVE-2018-2472
CVE-2018-2472 affects SAP BusinessObjects BI Platform (4.10 and 4.20) via the Web Intelligence DHTML client. The underlying issue is improper encoding of user-controlled inputs, leading to a Cross-Site Scripting (XSS) vulnerability. Communicating documents confirm the affected product and the roo...