CVE-2014-8667
Cross-site scripting (XSS) vulnerability in SAP HANA Web-based Development Workbench allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Date published : 2014-11-06
http://blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/