A cross site scripting vulnerability exist in the Administration Console in NetIQ Access Manager (NAM) 4.3 and 4.4.
netiq access manager 4.3
netiq access manager 4.4