CVE-2008-5095
Novell Identity Manager Roles Based Provisioning Module - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
References (4)
Scores
EPSS
0.0027
EPSS Percentile
50.2%
Classification
CWE
CWE-79
Status
published
Affected Products (6)
novell/identity_manager_roles_based_provisioning_module
novell/identity_manager_roles_based_provisioning_module
novell/user_application
novell/user_application
novell/user_application
n/a/n/a
Timeline
Published
Nov 14, 2008
Tracked Since
Feb 18, 2026