SAP Note 1670098 - Unauthorized modification of BSP in Webdocuments

Component : Document management -

Solution : https://service.sap.com/sap/support/notes/1670098 (SAP Service marketplace login required)

Key words :
sufficiently encode output parameters, cross-site scripting issue, terms cross-site scripting, modify displayed application content, potentially obtain authentification information, cross-site scripting, ca-dms reason, prerequisites bsp pages, webdocuments [ca-dms], bsp application webdocuments

Related Notes :

1678243Unauthorized modification of BSP in Webdocuments (2)
1582870ABAP XSS Escaping Support
1582867Security options (XSS) for ESCAPE
1509753Webdocs:XSRF Protection for BSP Application WebDocuments.
1505976Webdocs:Unauthorized Content Modification & Session Handling
1420256