NetIQ Identity Reporting, in versions before 5.5 Service Pack 1, is susceptible to an XSS attack.
netiq identity reporting 5.5
netiq identity reporting