Cross-site scripting (XSS) vulnerability in a ZCC page in njwc.jar in Novell ZENworks Configuration Management (ZCM) 11.2 prior to 11.2.3a Monthly Update 1 allows remote malicious users to inject arbitrary web script or HTML via vectors involving an onload event.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell zenworks configuration management 11.2.1 |
||
novell zenworks configuration management 11.2.2 |
||
novell zenworks configuration management 11.2.3 |
||
novell zenworks configuration management 11.2 |