2 matches found
CVE-2019-0377
SAP BusinessObjects Business Intelligence Platform Web Intelligence HTML interface, before versions 4.2, does not sufficiently encode user-controlled inputs and allows an attacker to store malicious scripts in the input controls, resulting in Stored Cross-Site Scripting...
CVE-2019-0377
CVE-2019-0377 affects SAP BusinessObjects BI Platform (Web Intelligence HTML interface) and is disclosed as a stored cross-site scripting vulnerability in versions before 4.2. The root cause, as described in several connected sources, is insufficient encoding of user-controlled inputs in the inpu...