Solution : https://service.sap.com/sap/support/notes/705187 (SAP Service marketplace login required)
Key words :
short-cut handle sap-sessioncmd=open&sap-syscmd=nocookie[, bsp runtime rc = on_check_bsp, ->c_response ne server->response, data fields type tihttpnvp, ->c_request ne server->request, ->c_response = server->response, ->server ne server, created bsp page, changing fields = fields, l_redirect type char1
Related Notes :
| 1061439 | Cross Site Scripting (XSS), encoding user entries |
| 928534 |