EUVD-2008-1894

Malware in sbrugna...

EUVD-2004-0532

Malware in sbrugna...

CVE-2014-8666

The User & Server configuration, InfoView refresh, user rights BI-BIP-ADM component in SAP Business Intellignece allows remote attackers to obtain audit event details via unspecified vectors...

Business Objects Infoview - 'cms' Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28762/info Business Objects is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input via the Infoview web portal. An attacker may leverage this issue to execu...

CVE-2014-3134

Cross-site scripting XSS vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2014-3134

Cross-site scripting XSS vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2014-3134

CVE-2014-3134 describes a cross-site scripting (XSS) vulnerability in the InfoView application of SAP BusinessObjects . The flaw allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The available records do not specify the exact vulnerable component version, exp...

SAP Business Objects XI R2 Infoview Multiple XSS

Class Input Validation Error Remote Yes Published 10 February 11:00AM Vulnerable XI R2 SAP Business Objects is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

SAP Business Objects InfoVew System - listing.aspx?searchText Cross-Site Scripting

SAP Business Objects InfoVew System - listing.aspx?searchText Cross-Site Scripting source: https://www.securityfocus.com/bid/52361/info SAP Business Objects is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

SAP Business Objects XI R2 Cross Site Scripting

Class Input Validation Error Remote Yes Published 10 February 11:00AM Vulnerable XI R2 SAP Business Objects is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

SAP Business Objects InfoView System - webiwebi_modify.aspx?id Cross-Site Scripting

SAP Business Objects InfoView System - webiwebimodify.aspx?id Cross-Site Scripting source: https://www.securityfocus.com/bid/52361/info SAP Business Objects is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

SAP Business Objects InfoView System - '/webi/webi_modify.aspx?id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/52361/info SAP Business Objects is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspectin...

SAP Business Objects InfoView System - helphelpredir.aspx?guide Cross-Site Scripting

SAP Business Objects InfoView System - helphelpredir.aspx?guide Cross-Site Scripting source: https://www.securityfocus.com/bid/52361/info SAP Business Objects is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

SAP Business Objects InfoVew System - 'listing.aspx?searchText' Cross-Site Scripting

source: https://www.securityfocus.com/bid/52361/info SAP Business Objects is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspectin...

Crystal Reports Server InfoView logonAction Parameter XSS

The InfoView component included with the Crystal Reports Server install on the remote host contains a JSP script fails to sanitize user input to the 'logonAction' parameter of its 'logon.jsp' script before using it to generate dynamic HTML output. An attacker may be able to leverage this issue to...

[DSECRG-00142] SAP Crystal Reports 2008 - actionNavjsp_xss

XSS vulnerability found in SAP Crystal Report Server 2008 Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://sap.com Bugs: Linked XSS Vulnerability Exploits: YES Reported: 04.03.2010 Vendor response: 05.03.2010 Date of SAPNOTE Publishe...

SAP Crystal Report Server 2008 Cross Site Scripting

XSS vulnerability found in SAP Crystal Report Server 2008 Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://sap.com Bugs: Linked XSS Vulnerability Exploits: YES Reported: 04.03.2010 Vendor response: 05.03.2010 Date of SAPNOTE Publishe...

CVE-2008-1894

Cross-site scripting XSS vulnerability in desktoplaunch/InfoView/logon/logon.object in BusinessObjects InfoView XI R2 SP1, SP2, and SP3 Java version before FixPack 3.5 allows remote attackers to inject arbitrary web script or HTML via the cms parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in desktoplaunch/InfoView/logon/logon.object in BusinessObjects InfoView XI R2 SP1, SP2, and SP3 Java version before FixPack 3.5 allows remote attackers to inject arbitrary web script or HTML via the cms parameter...