SAP Knowledge Base Article - Public

2792663 - Security Scan Error displaying when trying to make changes in RCM screens - Recruiting Management

Symptom

An error message related to Security Scan appears when:

  • Creating Offer Letter
  • Trying to make a change through Manage Templates to a template
  • Trying to edit the Job Profile tab and save

Error message: This content was rejected by the Security Scan of User Inputs feature because it might contain malicious content. Please review your content for security risks, such as scripting, and try again.

Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental.

Environment

SAP SuccessFactors Recruiting Management

Reproducing the Issue

When making a change to a template:

  1. Go to Manage Templates → Recruiting Management
  2. Select the template you wish to make changes to.
  3. Make the appropriate changes
  4. Click on Publish
  5. Get an error message

When creating an Offer Letter:

  1. Go to Recruiting → Job Requisitions
  2. Select the job requisition, then go to the Candidates tab of the job requisition → Take Action → Offer Letter
  3. Compose Offer Letter → Next

When editing a Job Requisition's Job Profile tab:

  1. Go to Recruiting
  2. Open the job requisition
  3. Go to Job Profile tab
  4. Edit the job description fields
  5. Click on Save
  6. Get the error

Error Message:

secuirty.jpg

Cause

Security Scan for User Inputs Functionality is currently enabled on the instance.

Resolution

This feature is to validate information inserted into fields of the module. This security option prohibits the use of scripts, such as javascript, in user inputs. If you use scripting anywhere in your system, such as HTML entered in a rich-text editor or in an uploaded XML template, you may not want to enable this feature.  To disable it, please follow the steps below:

  1. Go to Admin Center → Platform Feature Settings
  2. Search for feature Security Scan for User Inputs, and disable it
  3. Try to perform the action again, see that the error is no longer happening

Keywords

Security, Scan, Error, Offer, Letter, Create, User, Inputs, Input contains, tags, attributes not defined, prefer, manage, templates, template, requisition, application, 81c02a4686df215fab7ee6fa5d2e0ade5353fb0e , KBA , LOD-SF-RCM , Recruiting Management , Problem

Product

SAP SuccessFactors Recruiting all versions