SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed.
Metrics
Affected Vendors & Products
References
History
No history.
![cve-icon](/static/img/cve-icon.png)
Status: PUBLISHED
Assigner: sap
Published: 2019-06-14T18:50:18
Updated: 2024-08-04T17:44:16.390Z
Reserved: 2018-11-26T00:00:00
Link: CVE-2019-0303
![cve-icon](/static/img/cisa-icon.png)
No data.
![cve-icon](/static/img/nvd-icon.png)
Status : Modified
Published: 2019-06-14T19:29:00.277
Modified: 2024-11-21T04:16:39.203
Link: CVE-2019-0303
![cve-icon](/static/img/redhat-icon.png)
No data.