CVE-2007-4557
CVE-2007-4557 is an XSS vulnerability in the Novell GroupWise 6.5 WebAccess webacc servlet. The issue allows remote attackers to inject arbitrary web script or HTML via the User.Id parameter, demonstrated by a URL within a STYLE element. The description notes this may be due to an incomplete fix ...