CVE-2019-0303 – SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, …

Vuln ID: CVE-2019-0303

Published:  2019-06-14  19:29:00Z

Description: SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed.

Source: NVD.NIST.GOV

 

Tags