Find Answers

Filter Search Results
All Operating Systems:
All Products:

All Solution Types:
Source:
 
Ask a Question
Example: "Database could not be verified"  
Tips | Start Over | Solutions | Alerts | Patches | Defects  
Pages [Next]
  Results
HTML Solutions Business Manager 11.4 Security Bulletin
General Information Cross site scripting (XSS) Access control weaknesses OS and SQL injection flaws
HTML Solutions Business Manager 11.4.2 Security Bulletin
General Information Cross site scripting (XSS) Access control weaknesses OS and SQL injection flaws
PDF SolutionsBusinessManager11.4 WebApplication SecurityAssessment
... typical usage of SBM . ... ■ Logging into SBM ... Creating users in SBM Application Administrator ... White Paper Solutions Business Manager 11.4 Web Application Security ... ... No issues found SBM actively monitors for ... ... No issues found SBM uses industry best ... ... No issues found SBM actively monitors for ... grained configuration for allowed content. ... A4 Broken Access Control No issues found ... ... to ensure proper permissions to data. ... No issues found SBM provides a configuration ... A6 Sensitive Data Exposure No issues found Sensitive data stored by SBM is stored securely at rest and, if configured to do so, in transit to the server.
CMS-XML HTTP 302 Javascript Cross-Origin Request blocked by HTML 5 CORS - when IIS and Tomcat on different servers and browser is blocking redirection for some users when an AppScript is being run
developer tools errors similar to: Access-Control - Allow - Origin is missing Cross-Origin Request blocked
PDF Serena Business Manager 11.0 Web Application Security Assessment
A4 Insecure Direct Object References No issues found All access of objects inside of SBM go through a centralized access control to verify the user's permission . A5 Security Misconfiguration No issues found
PDF Solutions Business Manager 11.8 Web Application Security Assessment White Paper
A3 Cross Site Scripting (XSS) No issues found SBM actively monitors for XSS attacks and provides fine- grained configuration for allowed content. A4 Broken Access Control No issues found All access of objects inside of SBM go through a centralized access control to verify the user’s permission . All data requests are validated at the client and server levels to ensure proper permissions to data.
CMS-XML SBM 11.4 Application Administrator does not work properly in Firefox
SBM 11.4 Application Administrator does not work properly in Firefox
CMS-XML SBM: How to increase the memory available for Tomcat
This document is for versions of SBM prior to 11.4. SBM 11.4 lets you set Tomcat memory allocation in the Tomcat Server section of the SBM Configurator.
CMS-XML SBM: Anonymous submit screen is blank except for OK and Cancel buttons
Starting with SBM 11.4 , you can setup nice forms for anonymous submit. We have seen upgrades to SBM 11.4 where the form gets mixed up and need to be manually set.
CMS-XML How To logout of SAML2 IDP when exiting SBM
When using the SBM SAML2 provider, specific steps need to be taken to set SBM to invalidate its session when the user clicks the Exit link. This should work with all versions of SBM SAML2, though, all steps may not be necessary with SBM 11.4 or later.
Pages [Next]

Welcome kb sso

My Recent Searches

Search Feedback

Are we answering your questions?

Additional Assistance

  • Submit a Case Online
  • FAQs