CVE-2012-0272

2012-09-1910:00:00

flexera

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.018 Low

EPSS

Percentile

88.1%

JSON

Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 8.0 before Support Pack 3 allows remote attackers to inject arbitrary web script or HTML via the merge parameter.

References

www.novell.com/support/kb/doc.php?id=7010368

www.securitytracker.com/id?1027615

bugzilla.novell.com/show_bug.cgi?id=702785

bugzilla.novell.com/show_bug.cgi?id=740563