cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-21444,https://securityvulnerability.io/vulnerability/CVE-2021-21444,,"SAP Business Objects BI Platform, versions - 410, 420, 430, allows multiple X-Frame-Options headers entries in the response headers, which may not be predictably treated by all user agents. This could, as a result, nullify the added X-Frame-Options header leading to Clickjacking attack.",SAP,SAP Business Objects Business Intelligence Platform (cmc And Bi LauncHPad),5.4,MEDIUM,0.0008399999933317304,false,false,false,false,,false,false,2021-02-09T20:44:22.000Z,0
CVE-2020-6278,https://securityvulnerability.io/vulnerability/CVE-2020-6278,,"SAP Business Objects Business Intelligence Platform (BI Launchpad and CMC), versions 4.1, 4.2, allows to an attacker to embed malicious scripts in the application while uploading images, which gets executed when the victim opens these files, leading to Stored Cross Site Scripting",SAP,SAP Business Objects Business Intelligence Platform (bi LauncHPad And Cmc),5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2020-07-14T12:30:14.000Z,0
CVE-2020-6257,https://securityvulnerability.io/vulnerability/CVE-2020-6257,,"SAP Business Objects Business Intelligence Platform (CMC and BI Launchpad) 4.2 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting vulnerability.",SAP,SAP Business Objects Business Intelligence Platform (cmc And Bi LauncHPad),5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2020-05-12T17:53:05.000Z,0