SAP BusinessObjects viewError.jsp 'error' Parameter XSS

The version of SAP BusinessObjects installed on the remote web server has a cross-site scripting vulnerability. Input passed to the 'error' parameter of '/PerformanceManagement/jsp/viewError.jsp' is not properly sanitized. A remote attacker could exploit this by tricking a user into requesting a...