cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-28216,https://securityvulnerability.io/vulnerability/CVE-2022-28216,,"SAP BusinessObjects Business Intelligence Platform (BI Workspace) - version 420, is susceptible to a Cross-Site Scripting attack by an unauthenticated attacker due to improper sanitization of the user inputs on the network. On successful exploitation, an attacker can access certain reports causing a limited impact on confidentiality of the application data.",SAP,SAP Businessobjects Business Intelligence Platform (bi Workspace),6.1,MEDIUM,0.0008999999845400453,false,false,false,false,,false,false,2022-04-12T16:11:28.000Z,0
CVE-2021-33679,https://securityvulnerability.io/vulnerability/CVE-2021-33679,,"The SAP BusinessObjects BI Platform version - 420 allows an attacker, who has basic access to the application, to inject a malicious script while creating a new module document, file, or folder. When another user visits that page, the stored malicious script will execute in their session, hence allowing the attacker to compromise their confidentiality and integrity.",SAP,SAP Businessobjects Business Intelligence Platform (bi Workspace),5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2021-09-14T11:19:15.000Z,0
CVE-2019-0334,https://securityvulnerability.io/vulnerability/CVE-2019-0334,,"When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other sensitive information, leading to Stored Cross Site Scripting.",SAP,SAP Businessobjects Business Intelligence Platform (bi Workspace),5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2019-08-14T13:48:51.000Z,0
CVE-2019-0331,https://securityvulnerability.io/vulnerability/CVE-2019-0331,,"Under certain conditions, SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, allows an attacker to access sensitive data such as directory structure, leading to Information Disclosure.",SAP,SAP Businessobjects Business Intelligence Platform (bi Workspace),5.3,MEDIUM,0.0008999999845400453,false,false,false,false,,false,false,2019-08-14T13:43:15.000Z,0
CVE-2019-0326,https://securityvulnerability.io/vulnerability/CVE-2019-0326,,"SAP BusinessObjects Business Intelligence Platform (BI Workspace) (Enterprise), versions 4.1, 4.2, 4.3, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.",SAP,SAP Businessobjects Business Intelligence Platform - Bi Workspace (enterprise),6.1,MEDIUM,0.0010300000431016088,false,false,false,false,,false,false,2019-07-10T19:07:58.000Z,0
CVE-2019-0269,https://securityvulnerability.io/vulnerability/CVE-2019-0269,,"SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.10 and 4.20, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.",SAP,SAP Businessobjects Business Intelligence Platform (bi Workspace),5.4,MEDIUM,0.0006399999838322401,false,false,false,false,,false,false,2019-03-12T22:00:00.000Z,0