A reflected cross site scripting attack in the NetIQ Access Manager before 4.3.3 using the βtypecontaineridβ parameter of the policy editor could allowed code injection into pages of authenticated users.
CPE | Name | Operator | Version |
---|---|---|---|
access_manager | lt | 4.3.3 |