CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-1096

Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.015

EPSS Ranking 80.1%

CVSS Severity

CVSS v2 Score 4.3

References

http://download.novell.com/Download?buildid=dnDbmYe8PZc~
http://www.securitytracker.com/id/1029532
https://bugzilla.novell.com/show_bug.cgi?id=819115
http://download.novell.com/Download?buildid=dnDbmYe8PZc~
http://www.securitytracker.com/id/1029532
https://bugzilla.novell.com/show_bug.cgi?id=819115

Products affected by CVE-2013-1096

Novell » Identity Manager Roles Based Provisioning Module » Version: 4.0.2

cpe:2.3:a:novell:identity_manager_roles_based_provisioning_module:4.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1096

Products

Pricing

Contact Us