Количество 3
Количество 3
CVE-2019-0303
SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed.
GHSA-x8gc-wgw2-28c8
SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed.
BDU:2020-00642
Уязвимость модуля BILogon/appService.jsp платформы бизнес-аналитики SAP BusinessObjects Business Intelligence, позволяющая нарушителю выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-0303 SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed. | CVSS3: 6.1 | 0% Низкий | больше 6 лет назад |
| GHSA-x8gc-wgw2-28c8 SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed. | CVSS3: 6.1 | 0% Низкий | больше 3 лет назад |
 | BDU:2020-00642 Уязвимость модуля BILogon/appService.jsp платформы бизнес-аналитики SAP BusinessObjects Business Intelligence, позволяющая нарушителю выполнить произвольный код | CVSS3: 6.1 | 0% Низкий | больше 6 лет назад |
Уязвимостей на страницу