Reflected XSS in the NetIQ Access Manager prior to 4.3.3 allowed malicious users to reflect back xss into the called page using the url parameter.
netiq access manager