cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-21444,https://securityvulnerability.io/vulnerability/CVE-2021-21444,,"SAP Business Objects BI Platform, versions - 410, 420, 430, allows multiple X-Frame-Options headers entries in the response headers, which may not be predictably treated by all user agents. This could, as a result, nullify the added X-Frame-Options header leading to Clickjacking attack.",SAP,SAP Business Objects Business Intelligence Platform (cmc And Bi LauncHPad),5.4,MEDIUM,0.0008399999933317304,false,false,false,false,,false,false,2021-02-09T20:44:22.000Z,0
CVE-2020-6278,https://securityvulnerability.io/vulnerability/CVE-2020-6278,,"SAP Business Objects Business Intelligence Platform (BI Launchpad and CMC), versions 4.1, 4.2, allows to an attacker to embed malicious scripts in the application while uploading images, which gets executed when the victim opens these files, leading to Stored Cross Site Scripting",SAP,SAP Business Objects Business Intelligence Platform (bi LauncHPad And Cmc),5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2020-07-14T12:30:14.000Z,0
CVE-2020-6257,https://securityvulnerability.io/vulnerability/CVE-2020-6257,,"SAP Business Objects Business Intelligence Platform (CMC and BI Launchpad) 4.2 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting vulnerability.",SAP,SAP Business Objects Business Intelligence Platform (cmc And Bi LauncHPad),5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2020-05-12T17:53:05.000Z,0
CVE-2020-6189,https://securityvulnerability.io/vulnerability/CVE-2020-6189,,"Certain settings page(s) in SAP Business Objects Business Intelligence Platform (CMC), version 4.2, generates error messages that can give enterprise private-network related information which would otherwise be restricted leading to Information Disclosure.",SAP,SAP Business Objects Business Intelligence Platform (cmc),5.3,MEDIUM,0.0008999999845400453,false,false,false,false,,false,false,2020-02-12T19:45:53.000Z,0
CVE-2019-0346,https://securityvulnerability.io/vulnerability/CVE-2019-0346,,"Unencrypted communication error in SAP Business Objects Business Intelligence Platform (Central Management Console), version 4.2, leads to disclosure of list of user names and roles imported from SAP NetWeaver BI systems, resulting in Information Disclosure.",SAP,SAP Business Objects Business Intelligence Platform (cmc),6.5,MEDIUM,0.0006399999838322401,false,false,false,false,,false,false,2019-08-14T13:54:58.000Z,0