Solution : https://service.sap.com/sap/support/notes/782567 (SAP Service marketplace login required)
Key words :
implement consulting note 705187 - cross site scripting, terms xsshtmlbcross site scripting reason, xdp data html type string, <p6 char>method if_bsp_element~do_at_beginning, data enclosing_out type ref, content> create object content, line >>>> content->forceencode = 'enabled', cross site scripting, e-recruiting bsp pages, if_bsp_element~do_at_beginning method
Related Notes :
| 1061439 | Cross Site Scripting (XSS), encoding user entries |
| 822881 | XSS Support for BSP-Extensions HTMLB, XHTMLB and PHTMLB |
| 788771 | " "- special characters in titles of search result tabl |
| 711701 | Composite SAP note: Security in E-Recruiting |