Solution : https://service.sap.com/sap/support/notes/1684640 (SAP Service marketplace login required)
Key words :
sufficiently encode output parameters, cross-site scripting issue, terms cross site scripting, potentially obtain authentification information, modify displayed application content, cross-site scripting, ismcampaignpick ismsd_socreate ismcampaignmgnt, business functions med_msd_1, authentication information, malicious user
Related Notes :
1671470 | |
1582870 | ABAP XSS Escaping Support |
1582867 | Security options (XSS) for ESCAPE |
1040672 | Kampagnengestützte Auftragsanlage: Erweiterte Funktionalität |