cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2018-2444,https://securityvulnerability.io/vulnerability/CVE-2018-2444,,"SAP BusinessObjects Financial Consolidation, versions 10.0, 10.1, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.",SAP,SAP Businessobjects Financial Consolidation,6.1,MEDIUM,0.0010499999625608325,false,false,false,false,,false,false,2018-08-14T16:00:00.000Z,0
CVE-2017-14516,https://securityvulnerability.io/vulnerability/CVE-2017-14516,,"Cross-Site Scripting (XSS) exists in SAP Business Objects Financial Consolidation before 2017-06-13, aka SAP Security Note 2422292.",SAP,Businessobjects Financial Consolidation,6.1,MEDIUM,0.0008900000248104334,false,false,false,false,,false,false,2017-12-03T07:00:00.000Z,0
CVE-2017-6061,https://securityvulnerability.io/vulnerability/CVE-2017-6061,,Cross-site scripting (XSS) vulnerability in the help component of SAP BusinessObjects Financial Consolidation 10.0.0.1933 allows remote attackers to inject arbitrary web script or HTML via a GET request. /finance/help/en/frameset.htm is the URI for this component. The vendor response is SAP Security Note 2368106.,SAP,Businessobjects Financial Consolidation,4.7,MEDIUM,0.0016899999463930726,false,false,false,false,,false,false,2017-03-16T03:49:00.000Z,0