Cross-site scripting (XSS) vulnerability in a ZCC page in njwc.jar in Novell ZENworks Configuration Management (ZCM) 11.2 before 11.2.3a Monthly Update 1 allows remote attackers to inject arbitrary web script or HTML via vectors involving an onload event.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-06-17T10:00:00

Updated: 2024-08-06T14:49:20.691Z

Reserved: 2013-01-11T00:00:00

Link: CVE-2013-1097

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-06-17T11:38:49.120

Modified: 2024-11-21T01:48:54.423

Link: CVE-2013-1097

cve-icon Redhat

No data.