Cross-Site Scripting (XSS) Vulnerabilities in Novell GroupWise 8.0 WebAccess

Cross-Site Scripting (XSS) Vulnerabilities in Novell GroupWise 8.0 WebAccess

CVE-2011-2661 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 allow remote attackers to inject arbitrary web script or HTML via the (1) Directory.Item.name or (2) Directory.Item.displayName parameter.

Learn more about our Web App Pen Testing.