CVE-2021-21447 – SAP BusinessObjects Business Intelligence platform, versions 410, 420, allows an authentic …

12 January 2021

Vuln ID: CVE-2021-21447

Published: 2021-01-12 15:15:14Z

Description: SAP BusinessObjects Business Intelligence platform, versions 410, 420, allows an authenticated attacker to inject malicious JavaScript payload into the custom value input field of an Input Control, which can be executed by User who views the relevant application content, which leads to Stored Cross-Site Scripting.

Source: NVD.NIST.GOV

Date:

12 January 2021

Categorie(s):

NVD

Tag(s):

NVD

LSA Whisperer: Open-source tools for interacting with authentication packages26 April 2024
What AI can tell organizations about their M&A risk26 April 2024
Breaking down the numbers: Cybersecurity funding activity recap26 April 2024
New infosec products of the week: April 26, 202426 April 2024
OpenAI’s GPT-4 Can Autonomously Exploit 87% of One-Day Vulnerabilities, Study Finds26 April 2024