Cross-site scripting (XSS) vulnerability in CA eHealth Performance Manager 6.0.x up to and including 6.2.x, when malicious HTML detection is disabled, allows remote malicious users to inject arbitrary web script or HTML via a crafted request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ca ehealth performance manager 6.0 |
||
ca ehealth performance manager 6.1 |
||
ca ehealth performance manager 6.2 |