CVE-2013-1087

Novell GroupWise <8.0.3 HP3, 2012 SP2 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the client in Novell GroupWise through 8.0.3 HP3, and 2012 through SP2, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML via the body of an e-mail message.

References (2)

[Vendor Advisory] http://www.novell.com/support/kb/doc.php?id=7012063

[Issue Tracking] https://bugzilla.novell.com/show_bug.cgi?id=799673

Scores

EPSS 0.0064

EPSS Percentile 70.2%

Details

CWE

CWE-79

Status published

Products (48)

novell/groupwise < 8.03

novell/groupwise

... and 38 more

Published Jul 15, 2013

Tracked Since Feb 18, 2026