206 matches found
CVE-2018-2397
In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console CMC does not sufficiently encode user controlled inputs which results in Cross-Site Scripting...
Cross site scripting
In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console CMC does not sufficiently encode user controlled inputs which results in Cross-Site Scripting...
MISP cross-site scripting vulnerability (CNVD-2017-36544)
MISP is a suite of open source software solutions for collecting, storing, distributing and sharing cybersecurity metrics and threats cybersecurity event analysis and malware analysis. A cross-site scripting vulnerability exists in the 'sharingGroupPopulateOrganisations' function in the...
MISP Override Access Vulnerability
MISP is a suite of open source software solutions for collecting, storing, distributing and sharing cybersecurity metrics and threats cybersecurity event analysis and malware analysis. A security vulnerability exists in versions of MISP prior to 2.4.80. An attacker can exploit the vulnerability t...
CVE-2016-6818
SAP Business Intelligence platform before January 2017 is vulnerable to SQL injection via crafted SQL queries, allowing remote attackers to obtain sensitive information, modify data, cause a DoS by data deletion, or launch administrative operations and potentially OS commands. Root cause: insuffi...
SAP BusinessObjects BI Platform Remote Command Execution Vulnerability
SAP BusinessObjects BI Platform is the German SAP SAP company's set of business intelligence BI solution platform. A remote command execution vulnerability exists in SAP BusinessObjects BI Platform, which can be exploited by an attacker to execute arbitrary commands with elevated privileges, and ...