Solution : https://service.sap.com/sap/support/notes/1673790 (SAP Service marketplace login required)
Key words :
sufficiently encode output parameters, prerequisites bsp page 'session, cross-site scripting issue, terms cross-site scripting, modify displayed application content, potentially obtain authentification information, cross-site scripting, relevant support package, current session, authentication information
Related Notes :
| 1582870 | ABAP XSS Escaping Support |
| 1582867 | Security options (XSS) for ESCAPE |
| 1491236 |