SAP Note 1450166 - Unauthorized usage of application functionality

Composant : Web Container, HTTP, JavaMail, Servlets -

Solution : https://service.sap.com/sap/support/notes/1450166 (Connexion à SAP Service Marketplace requise)

Mots Clés :
terms cross-site request forgerycsrfxsrfxsrf protection reason, cross-site scripting attack, xsrf protection framework, latest patch level, referencing specific urls, malicious user tricks, malicious user, xsrf attacks, specific parameters, authenticated user'

Notes associées :

1616259
1597549Unauthorized modification of displayed content in FSCM_BD
1582983
1582779Patch for MDSD Admin Console
1570341Invalid attribute in application-j2ee-engine.xml
1548767
1544240Unauthorized use of application functions in SAP NW Portal.
1537813MII 12.1 SP08
1535298Unauthorized use of application functions in AMC Web Editor
1526079Unauthorized usage of application functionality in MSS 60.1
1519463Unauthorized usage of application functionality in WCL
1516177XSRFJava:Adopt API-PSI Utility Customer E-Services
1512595Unauthorized usage of application functionality in LSOCP
1511031Unauthorized usage of application functionality in WFM.
1509214Unauthorized usage of application functionality in FSCM_BD
1501646