Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2017-16681
Disclosure Date: December 12, 2017 (last updated November 26, 2024)
Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence Promotion Management Application, Enterprise 4.10, 4.20, 4.30, as user controlled inputs are not sufficiently encoded.
0
Attacker Value
Unknown
CVE-2017-16684
Disclosure Date: December 12, 2017 (last updated November 26, 2024)
SAP Business Intelligence Promotion Management Application, Enterprise 4.10, 4.20, and 4.30, does not perform authentication checks for functionalities that require user identity.
0
