SAP Note 1670098 - Unauthorized modification of BSP in Webdocuments

Composant : Document management -

Solution : https://service.sap.com/sap/support/notes/1670098 (Connexion à SAP Service Marketplace requise)

Mots Clés :
sufficiently encode output parameters, cross-site scripting issue, terms cross-site scripting, modify displayed application content, potentially obtain authentification information, cross-site scripting, ca-dms reason, prerequisites bsp pages, webdocuments [ca-dms], bsp application webdocuments

Notes associées :

1678243Unauthorized modification of BSP in Webdocuments (2)
1582870ABAP XSS Escaping Support
1582867Security options (XSS) for ESCAPE
1509753Webdocs:XSRF Protection for BSP Application WebDocuments.
1505976Webdocs:Unauthorized Content Modification & Session Handling
1420256