CVE-2020-6257
SAP Business Objects Business Intelligence Platform (CMC and BI Launchpad) 4.2 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting vulnerability.
Date published : 2020-05-12
https://launchpad.support.sap.com/#/notes/2907781
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222