CVE-2026-0489 — Due to insufficient validation of user-controlled input in the URLs query parameter. SAP Business One Job Service could allow an unauthenticated attacker to inject specially crafted input which upon u — CVE Database · The Intelligence Room