3 matches found
CA20100223-01: Security Notice for CA eHealth Performance Manager
-----BEGIN PGP SIGNED MESSAGE----- CA20100223-01: Security Notice for CA eHealth Performance Manager Issued: February 23, 2010 CA's support is alerting customers to a security risk with CA eHealth Performance Manager. A cross-site scripting vulnerability exists that can allow a remote attacker to...
CVE-2010-0640
Cross-site scripting XSS vulnerability in CA eHealth Performance Manager 6.0.x through 6.2.x, when malicious HTML detection is disabled, allows remote attackers to inject arbitrary web script or HTML via a crafted request...
CVE-2010-0640
CA eHealth Performance Manager 6.0.x–6.2.x has a cross-site scripting (XSS) vulnerability in the web interface due to insufficient validation of certain characters in requests. An attacker can entice a user to follow a malicious URL, potentially exfiltrating sensitive information via injected scr...