Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SAP WebIntelligence BILaunchPad, versions 4.10, 4.20, does not sufficiently encode user-controlled inputs in generated HTML reports, resulting in Cross-Site Scripting (XSS) vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP Web Intelligence BI LaunchPad 跨站脚本漏洞
Vulnerability Description
SAP Web Intelligence BI LaunchPad是德国思爱普(SAP)公司的一款使用在BusinessObjects工具中的基于Java或HTML的用户界面。该产品主要用于执行分析报告和数据分析。 SAP Web Intelligence BI LaunchPad 4.10版本和4.20版本中存在跨站脚本漏洞,该漏洞源于程序没有正确地验证用户提交的输入。远程攻击者可利用该漏洞在用户浏览器中执行任意脚本代码。
CVSS Information
N/A
Vulnerability Type
N/A