Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess prior to 7 Support Pack 3 Public Beta allow remote malicious users to inject arbitrary web script or HTML via the (1) User.html, (2) Error, (3) User.Theme.index, and (4) and User.lang parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell groupwise 6.5.7 |
||
novell groupwise 7.0.0 |
||
novell groupwise webaccess |
||
novell groupwise 7.0 |
||
novell groupwise 5.57e |