Cross-site scripting (XSS) vulnerability in nidp/idff/sso in Novell Access Manager Identity Server prior to 3.0.0-1013 allows remote malicious users to inject arbitrary web script or HTML via the IssueInstant parameter, which is not properly handled in the resulting error message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell access manager identity server |