SAP Note 1450166 - Unauthorized usage of application functionality

Composant : Web Container, HTTP, JavaMail, Servlets -

Solution : https://service.sap.com/sap/support/notes/1450166 (Connexion à SAP Service Marketplace requise)

Mots Clés :
terms cross-site request forgerycsrfxsrfxsrf protection reason, cross-site scripting attack, xsrf protection framework, latest patch level, referencing specific urls, malicious user tricks, malicious user, xsrf attacks, specific parameters, authenticated user'

Notes associées :

1616259
1597549	Unauthorized modification of displayed content in FSCM_BD
1582983
1582779	Patch for MDSD Admin Console
1570341	Invalid attribute in application-j2ee-engine.xml
1548767
1544240	Unauthorized use of application functions in SAP NW Portal.
1537813	MII 12.1 SP08
1535298	Unauthorized use of application functions in AMC Web Editor
1526079	Unauthorized usage of application functionality in MSS 60.1
1519463	Unauthorized usage of application functionality in WCL
1516177	XSRFJava:Adopt API-PSI Utility Customer E-Services
1512595	Unauthorized usage of application functionality in LSOCP
1511031	Unauthorized usage of application functionality in WFM.
1509214	Unauthorized usage of application functionality in FSCM_BD
1501646