SAP Note 1511062 - Unauthorized usage of application functionality in IS-HER-CM

Component : Student Lifecycle Management -

Solution : https://service.sap.com/sap/support/notes/1511062 (SAP Service marketplace login required)

Key words :
terms cross-site request forgery, cross site scripting attack, transport request number, report bsp_xsrf_param_pmiq_<release>, bsp applications adapted, referencing specific urls, database table bsptempxsrfstore, specific parameters, table entries, malicious user

Related Notes :

1540729ASU content for activating XSRF protection for BSP