Onapsis Security Advisory – BusinessObjects BI “Send to Inbox” functionality can be abused by an attacker, allowing them to modify displayed application content without authorization, and to potentially obtain authentication information from other legitimate users.