Cross-Site Scripting (XSS) Vulnerability in Novell Access Manager iManager before 4.3.3

CVE-2017-9276 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Novell Access Manager iManager before 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter.

Learn more about our Web Application Penetration Testing UK.