CVE-2016-1598

XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages...

CVE-2016-1598

Affected software: NetIQ Identity Manager IDM 4.5 Identity Applications, prior to version 4.5.4. Vulnerability: Cross-site scripting (XSS) via the username field that allows an attacker to inject arbitrary HTML into the Role Assignment administrator HTML pages. Root cause (as described): the prog...