VYPR
Unrated severityNVD Advisory· Published Jun 14, 2019· Updated Aug 4, 2024

CVE-2019-0303

CVE-2019-0303

Description

SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.