Page 8 of 71 results (0.000 seconds)
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2018-2397
https://notcve.org/view.php?id=CVE-2018-2397
14 Mar 2018 — In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console (CMC) does not sufficiently encode user controlled inputs which results in Cross-Site Scripting. En SAP Business Objects Business Intelligence Platform, en versiones 4.00, 4.10, 4.20 y 4.30, el CMC (Central Management Console) no cifra lo suficiente las entradas controladas por el usuario, lo que resulta en Cross-Site Scripting (XSS). • http://www.securityfocus.com/bid/103373 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •