Description
Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Affected products
- Novell / identity_manager_roles_based_provisioning_module3.6.0 – 3.6.0
- Novell / identity_manager_roles_based_provisioning_module3.6.1 – 3.6.1
- Novell / user_application3.0.1 – 3.0.1
- Novell / user_application3.5.0 – 3.5.0
- Novell / user_application3.5.1 – 3.5.1