/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- When entering "<img src=x onerror=prompt(2)>" in the title field of a new document or folder or hyperlink or publication, the script gets executed.
- This behavior can allow malicious code to be injected.
Read more...
Environment
- SAP BusinessObjects Business Intelligence platform 4.2 SP7 Patch3
- SAP BusinessObjects Business Intelligence platform 4.2 SP7 Patch4
- SAP BusinessObjects Business Intelligence platform 4.2 SP7 Patch5
Product
SAP BusinessObjects Business Intelligence platform 4.2
Keywords
BO 4, BI 4, create, run, running, popup, pop up, window. , KBA , BI-BIP-DEP , Webapp Deployment, Networking, Vulnerabilities, Webservices , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)