The vulnerability of the Visual Difference Application component of the SAP Business Objects Business Intelligence Platform allows a perpetrator to disclose protected information.

The vulnerability of the Visual Difference Application component in the SAP Business Objects Business Intelligence Platform exists due to the failure to take measures to neutralize special elements used in SQL queries. Exploiting this vulnerability can allow a malicious actor, operating remotely,...

CVE-2022-32246

SAP Busines Objects Business Intelligence Platform Visual Difference Application - versions 420, 430, allows an authenticated attacker who has access to BI admin console to send crafted queries and extract data from the SQL backend. On successful exploitation, the attacker can cause limited impac...

CVE-2022-32246

SAP Busines Objects Business Intelligence Platform Visual Difference Application - versions 420, 430, allows an authenticated attacker who has access to BI admin console to send crafted queries and extract data from the SQL backend. On successful exploitation, the attacker can cause limited impac...

CVE-2022-32246

CVE-2022-32246 affects SAP BusinessObjects BI Platform (Visual Difference Application) and is exploitable via an SQL injection in versions 420 and 430. An authenticated attacker with BI admin console access can send crafted queries to the SQL backend and extract data, causing limited impact on co...

CVE-2019-0259

CVE-2019-0259 relates to SAP BusinessObjects (versions 4.2 and 4.3) and is a vulnerability where an attacker can upload arbitrary files, including scripts, due to insufficient file format validation. The root cause is inadequate validation during the file upload process, enabling remote, unauthen...

CVE-2019-0259

SAP BusinessObjects, versions 4.2 and 4.3, Visual Difference allows an attacker to upload any file including script files without proper file format validation...