Solution : https://service.sap.com/sap/support/notes/1676754 (SAP Service marketplace login required)
Key words :
prerequisites webdynpro class cl_def_im_dpvms_badi_model, sufficiently encode output parameters, cross-site scripting issue, terms cross-site scripting, modify displayed application content, potentially obtain authentification information, cross-site scripting, -a-dp reason, malicious users allowing, legitimate users
Related Notes :
| 1582870 | ABAP XSS Escaping Support |
| 1582867 | Security options (XSS) for ESCAPE |