JVN#33788325: Accela BizSearch vulnerable to cross-site scripting

ID JVN:33788325
Type jvn
Reporter Japan Vulnerability Notes
Modified 2013-10-04T00:00:00


## Description

Accela BizSearch provided by Accela Technology Corporation is an enterprise search system. Accela BizSearch contains a cross-site scripting vulnerability.

## Impact

An arbitrary script may be executed on the user's web browser.

## Solution

Apply a patch
Apply the patch according to the information provided by the developer or distributor.

## Products Affected

Following versions for Linux and Solaris are vulnerable:

  • Accela BizSearch V3.2 micro version up (2010/10) and earlier Note that Accela BizSearch for Windows is not affected.