Security Advisory

CVE-2021-21447

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-12 14:40:43

Last updated 2024-08-03 18:16:22

Assigner sap

State PUBLISHED

Description

SAP BusinessObjects Business Intelligence platform, versions 410, 420, allows an authenticated attacker to inject malicious JavaScript payload into the custom value input field of an Input Control, which can be executed by User who views the relevant application content, which leads to Stored Cross-Site Scripting.

← Browse all CVEs View on cve.org ↗