Cross-site scripting (XSS) vulnerability in Business Objects InfoView 5.1.4 up to and including 5.1.8 for WebIntelligence 2.7.0 up to and including 2.7.4 allows remote malicious users to inject arbitrary web script or HTML via document names when uploading a document.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
businessobjects infoview 5.1.7 |
||
businessobjects infoview 5.1.8 |
||
businessobjects infoview 5.1.5 |
||
businessobjects infoview 5.1.6 |
||
businessobjects webintelligence 2.7 |
||
businessobjects webintelligence 2.7.1 |
||
businessobjects webintelligence 2.7.2 |
||
businessobjects infoview 5.1.4 |
||
businessobjects webintelligence 2.7.3 |
||
businessobjects webintelligence 2.7.4 |