CVE-2014-3134
Cross-site scripting (XSS) vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0033 (0.3%)
Percentile: 55.8%
EPSS: 2026-05-06
Affects
sap:businessobjectsTechnical description
Cross-site scripting (XSS) vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published: 4/30/2014, 2:22:07 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://scn.sap.com/docs/DOC-8218
- http://seclists.org/fulldisclosure/2014/Apr/303
- http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2014-010
- http://www.securityfocus.com/bid/67110
- https://service.sap.com/sap/support/notes/1931399
- http://scn.sap.com/docs/DOC-8218
- http://seclists.org/fulldisclosure/2014/Apr/303
- http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2014-010