SAP Note 1676754 - Unauthorized modification of BSP in Webdocuments

Composant : Vehicle Management System WebFrontend - Dealer Portal

Solution : https://service.sap.com/sap/support/notes/1676754 (Connexion à SAP Service Marketplace requise)

Mots Clés :
prerequisites webdynpro class cl_def_im_dpvms_badi_model, sufficiently encode output parameters, cross-site scripting issue, terms cross-site scripting, modify displayed application content, potentially obtain authentification information, cross-site scripting, -a-dp reason, malicious users allowing, legitimate users

Notes associées :

1582870ABAP XSS Escaping Support
1582867Security options (XSS) for ESCAPE