CVE-2018-2479
SAP BusinessObjects BI Platform (BIWorkspace) versions 4.1 and 4.2 have a Cross-Site Scripting (XSS) vulnerability caused by insufficient encoding of user-controlled inputs in the web UI. Root cause: inadequate encoding/escaping before rendering user input. Impact: XSS is possible when interactin...