CVE-2025-24867 | SAP BusinessObjects Platform BI Launchpad unprotected cross site scripting

Inserito da Angelo Barbosa | Feb 11, 2025 | CVE

A vulnerability classified as problematic has been found in SAP BusinessObjects Platform. Affected is an unknown function of the component BI Launchpad. The manipulation of the argument unprotected leads to cross site scripting.

This vulnerability is traded as CVE-2025-24867. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-24867 | SAP BusinessObjects Platform BI Launchpad unprotected cross site scripting

Post correlati

CVE-2023-7163 | D-Link D-View 8 up to 2.0.2.89 Inventory input validation

CVE-2025-21105 | Dell RecoverPoint for VMs 6.0 SP1/6.0 SP1 P1/6.0 SP1 P2 Configuration access control (dsa-2025-101)

CVE-2024-37940 | Seraphinite Accelerator Full Plugin/Accelerator Premium Plugin cross-site request forgery

CVE-2024-6381 | MongoDB libbson up to 1.26.1 bson_strfreev integer overflow to buffer overflow