### [CVE-2018-2467](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2467)
![](https://img.shields.io/static/v1?label=Product&message=SAP%20BusinessObjects%20BI%20Platform%20Servers%20(Software%20Development%20Kit)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=4.1%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=4.2%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Information%20Disclosure&color=brightgreen)

### Description

In the Software Development Kit in SAP BusinessObjects BI Platform Servers, versions 4.1 and 4.2, using the specially crafted URL in a Web Browser such as Chrome the system returns an error with the path of the used application server.

### POC

#### Reference
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=500633095

#### Github
No PoCs found on GitHub currently.