CVE-2024-28165 | SAP BusinessObjects Business Intelligence Platform 430/440 Opendocument URL cross site scripting

Inserito da Angelo Barbosa | Mag 14, 2024 | CVE

A vulnerability was found in SAP BusinessObjects Business Intelligence Platform 430/440. It has been classified as problematic. This affects an unknown part of the component Opendocument URL Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-28165. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-28165 | SAP BusinessObjects Business Intelligence Platform 430/440 Opendocument URL cross site scripting

Post correlati

CVE-2024-30314 | Adobe Dreamweaver Desktop up to 21.3 os command injection (apsb24-39)

CVE-2024-34349 | Sylius up to 1.12.15/1.13.0 Name cross site scripting (GHSA-v2f9-rv6w-vw8r)

CVE-2024-1008 | SourceCodester Employee Management System 1.0 Profile Page edit-photo.php unrestricted upload

CVE-2024-39312 | randombit botan up to 2.19.4/3.4.x x.509 Certificate certificate validation