Search

Find a vulnerability

Search criteria

    12 vulnerabilities found for identity_manager_roles_based_provisioning_module by novell

    CVE-2013-1096 (GCVE-0-2013-1096)

    Vulnerability from nvd – Published: 2013-12-28 02:00 – Updated: 2024-08-06 14:49
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-11-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T14:49:20.635Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1029532",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1029532"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=819115"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-11-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2015-05-18T14:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1029532",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1029532"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=819115"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-1096",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1029532",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1029532"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=819115",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=819115"
                },
                {
                  "name": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~",
                  "refsource": "CONFIRM",
                  "url": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-1096",
        "datePublished": "2013-12-28T02:00:00.000Z",
        "dateReserved": "2013-01-11T00:00:00.000Z",
        "dateUpdated": "2024-08-06T14:49:20.635Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-1083 (GCVE-0-2013-1083)

    Vulnerability from nvd – Published: 2013-03-29 10:00 – Updated: 2024-09-16 19:00
    VLAI
    Summary
    Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T14:49:20.711Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://download.novell.com/Download?buildid=nbGXg-msbmw~"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=807193"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2013-03-29T10:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://download.novell.com/Download?buildid=nbGXg-msbmw~"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=807193"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-1083",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://download.novell.com/Download?buildid=nbGXg-msbmw~",
                  "refsource": "CONFIRM",
                  "url": "http://download.novell.com/Download?buildid=nbGXg-msbmw~"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=807193",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=807193"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-1083",
        "datePublished": "2013-03-29T10:00:00.000Z",
        "dateReserved": "2013-01-11T00:00:00.000Z",
        "dateUpdated": "2024-09-16T19:00:58.997Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2011-2227 (GCVE-0-2011-2227)

    Vulnerability from nvd – Published: 2011-10-08 01:00 – Updated: 2024-08-06 22:53
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 709603.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2011-09-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T22:53:17.471Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=709603"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
              },
              {
                "name": "1026138",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1026138"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
              },
              {
                "name": "49935",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/49935"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-09-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 709603."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2011-10-19T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=709603"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
            },
            {
              "name": "1026138",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1026138"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
            },
            {
              "name": "49935",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/49935"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-2227",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 709603."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=709603",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=709603"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
                },
                {
                  "name": "1026138",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1026138"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
                },
                {
                  "name": "49935",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/49935"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-2227",
        "datePublished": "2011-10-08T01:00:00.000Z",
        "dateReserved": "2011-06-02T00:00:00.000Z",
        "dateUpdated": "2024-08-06T22:53:17.471Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2011-1696 (GCVE-0-2011-1696)

    Vulnerability from nvd – Published: 2011-10-08 01:00 – Updated: 2024-08-06 22:37
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 692972.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2011-09-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T22:37:25.337Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=692972"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
              },
              {
                "name": "1026138",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1026138"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
              },
              {
                "name": "49935",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/49935"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-09-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 692972."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2011-10-19T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=692972"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
            },
            {
              "name": "1026138",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1026138"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
            },
            {
              "name": "49935",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/49935"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-1696",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 692972."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=692972",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=692972"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
                },
                {
                  "name": "1026138",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1026138"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
                },
                {
                  "name": "49935",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/49935"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-1696",
        "datePublished": "2011-10-08T01:00:00.000Z",
        "dateReserved": "2011-04-15T00:00:00.000Z",
        "dateUpdated": "2024-08-06T22:37:25.337Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-4324 (GCVE-0-2010-4324)

    Vulnerability from nvd – Published: 2011-01-07 18:00 – Updated: 2024-08-07 03:43
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://osvdb.org/70298 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2011/0038 vdb-entryx_refsource_VUPEN
    http://www.securityfocus.com/bid/45692 vdb-entryx_refsource_BID
    http://secunia.com/advisories/42819 third-party-advisoryx_refsource_SECUNIA
    http://www.securitytracker.com/id?1024941 vdb-entryx_refsource_SECTRACK
    https://bugzilla.novell.com/show_bug.cgi?id=653516 x_refsource_CONFIRM
    http://support.novell.com/docs/Readmes/InfoDocume… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2011-01-04 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T03:43:13.758Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "70298",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/70298"
              },
              {
                "name": "ADV-2011-0038",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2011/0038"
              },
              {
                "name": "45692",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/45692"
              },
              {
                "name": "42819",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/42819"
              },
              {
                "name": "1024941",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1024941"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=653516"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html"
              },
              {
                "name": "novell-approval-form-xss(64501)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64501"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-01-04T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "70298",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/70298"
            },
            {
              "name": "ADV-2011-0038",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2011/0038"
            },
            {
              "name": "45692",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/45692"
            },
            {
              "name": "42819",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/42819"
            },
            {
              "name": "1024941",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1024941"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=653516"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html"
            },
            {
              "name": "novell-approval-form-xss(64501)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64501"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-4324",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "70298",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/70298"
                },
                {
                  "name": "ADV-2011-0038",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2011/0038"
                },
                {
                  "name": "45692",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/45692"
                },
                {
                  "name": "42819",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/42819"
                },
                {
                  "name": "1024941",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1024941"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=653516",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=653516"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html"
                },
                {
                  "name": "novell-approval-form-xss(64501)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64501"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-4324",
        "datePublished": "2011-01-07T18:00:00.000Z",
        "dateReserved": "2010-11-29T00:00:00.000Z",
        "dateUpdated": "2024-08-07T03:43:13.758Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2008-5095 (GCVE-0-2008-5095)

    Vulnerability from nvd – Published: 2008-11-14 19:00 – Updated: 2024-08-07 10:40
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/30947 vdb-entryx_refsource_BID
    http://www.securitytracker.com/id?1020792 vdb-entryx_refsource_SECTRACK
    http://www.securitytracker.com/id?1020793 vdb-entryx_refsource_SECTRACK
    http://www.novell.com/support/viewContent.do?exte… x_refsource_CONFIRM
    Date Public
    2008-09-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T10:40:17.182Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "30947",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/30947"
              },
              {
                "name": "1020792",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1020792"
              },
              {
                "name": "1020793",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1020793"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2008-09-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2009-08-15T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "30947",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/30947"
            },
            {
              "name": "1020792",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1020792"
            },
            {
              "name": "1020793",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1020793"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2008-5095",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "30947",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/30947"
                },
                {
                  "name": "1020792",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1020792"
                },
                {
                  "name": "1020793",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1020793"
                },
                {
                  "name": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1",
                  "refsource": "CONFIRM",
                  "url": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2008-5095",
        "datePublished": "2008-11-14T19:00:00.000Z",
        "dateReserved": "2008-11-14T00:00:00.000Z",
        "dateUpdated": "2024-08-07T10:40:17.182Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-1096 (GCVE-0-2013-1096)

    Vulnerability from cvelistv5 – Published: 2013-12-28 02:00 – Updated: 2024-08-06 14:49
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2013-11-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T14:49:20.635Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1029532",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1029532"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=819115"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-11-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2015-05-18T14:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1029532",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1029532"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=819115"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-1096",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1029532",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1029532"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=819115",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=819115"
                },
                {
                  "name": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~",
                  "refsource": "CONFIRM",
                  "url": "http://download.novell.com/Download?buildid=dnDbmYe8PZc~"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-1096",
        "datePublished": "2013-12-28T02:00:00.000Z",
        "dateReserved": "2013-01-11T00:00:00.000Z",
        "dateUpdated": "2024-08-06T14:49:20.635Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-1083 (GCVE-0-2013-1083)

    Vulnerability from cvelistv5 – Published: 2013-03-29 10:00 – Updated: 2024-09-16 19:00
    VLAI
    Summary
    Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T14:49:20.711Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://download.novell.com/Download?buildid=nbGXg-msbmw~"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=807193"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2013-03-29T10:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://download.novell.com/Download?buildid=nbGXg-msbmw~"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=807193"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-1083",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://download.novell.com/Download?buildid=nbGXg-msbmw~",
                  "refsource": "CONFIRM",
                  "url": "http://download.novell.com/Download?buildid=nbGXg-msbmw~"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=807193",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=807193"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-1083",
        "datePublished": "2013-03-29T10:00:00.000Z",
        "dateReserved": "2013-01-11T00:00:00.000Z",
        "dateUpdated": "2024-09-16T19:00:58.997Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2011-1696 (GCVE-0-2011-1696)

    Vulnerability from cvelistv5 – Published: 2011-10-08 01:00 – Updated: 2024-08-06 22:37
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 692972.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2011-09-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T22:37:25.337Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=692972"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
              },
              {
                "name": "1026138",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1026138"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
              },
              {
                "name": "49935",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/49935"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-09-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 692972."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2011-10-19T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=692972"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
            },
            {
              "name": "1026138",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1026138"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
            },
            {
              "name": "49935",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/49935"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-1696",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 692972."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=692972",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=692972"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
                },
                {
                  "name": "1026138",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1026138"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
                },
                {
                  "name": "49935",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/49935"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-1696",
        "datePublished": "2011-10-08T01:00:00.000Z",
        "dateReserved": "2011-04-15T00:00:00.000Z",
        "dateUpdated": "2024-08-06T22:37:25.337Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2011-2227 (GCVE-0-2011-2227)

    Vulnerability from cvelistv5 – Published: 2011-10-08 01:00 – Updated: 2024-08-06 22:53
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 709603.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2011-09-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T22:53:17.471Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=709603"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
              },
              {
                "name": "1026138",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1026138"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
              },
              {
                "name": "49935",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/49935"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-09-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 709603."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2011-10-19T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=709603"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
            },
            {
              "name": "1026138",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1026138"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
            },
            {
              "name": "49935",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/49935"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-2227",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 709603."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111710.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112271.html"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112230.html"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=709603",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=709603"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5111711.html"
                },
                {
                  "name": "1026138",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1026138"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112250.html"
                },
                {
                  "name": "49935",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/49935"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5112270.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-2227",
        "datePublished": "2011-10-08T01:00:00.000Z",
        "dateReserved": "2011-06-02T00:00:00.000Z",
        "dateUpdated": "2024-08-06T22:53:17.471Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2010-4324 (GCVE-0-2010-4324)

    Vulnerability from cvelistv5 – Published: 2011-01-07 18:00 – Updated: 2024-08-07 03:43
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://osvdb.org/70298 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2011/0038 vdb-entryx_refsource_VUPEN
    http://www.securityfocus.com/bid/45692 vdb-entryx_refsource_BID
    http://secunia.com/advisories/42819 third-party-advisoryx_refsource_SECUNIA
    http://www.securitytracker.com/id?1024941 vdb-entryx_refsource_SECTRACK
    https://bugzilla.novell.com/show_bug.cgi?id=653516 x_refsource_CONFIRM
    http://support.novell.com/docs/Readmes/InfoDocume… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2011-01-04 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T03:43:13.758Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "70298",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/70298"
              },
              {
                "name": "ADV-2011-0038",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2011/0038"
              },
              {
                "name": "45692",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/45692"
              },
              {
                "name": "42819",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/42819"
              },
              {
                "name": "1024941",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1024941"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.novell.com/show_bug.cgi?id=653516"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html"
              },
              {
                "name": "novell-approval-form-xss(64501)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64501"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-01-04T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "70298",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/70298"
            },
            {
              "name": "ADV-2011-0038",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2011/0038"
            },
            {
              "name": "45692",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/45692"
            },
            {
              "name": "42819",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/42819"
            },
            {
              "name": "1024941",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1024941"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.novell.com/show_bug.cgi?id=653516"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html"
            },
            {
              "name": "novell-approval-form-xss(64501)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64501"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2010-4324",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "70298",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/70298"
                },
                {
                  "name": "ADV-2011-0038",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2011/0038"
                },
                {
                  "name": "45692",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/45692"
                },
                {
                  "name": "42819",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/42819"
                },
                {
                  "name": "1024941",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1024941"
                },
                {
                  "name": "https://bugzilla.novell.com/show_bug.cgi?id=653516",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.novell.com/show_bug.cgi?id=653516"
                },
                {
                  "name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html",
                  "refsource": "CONFIRM",
                  "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5085293.html"
                },
                {
                  "name": "novell-approval-form-xss(64501)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64501"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2010-4324",
        "datePublished": "2011-01-07T18:00:00.000Z",
        "dateReserved": "2010-11-29T00:00:00.000Z",
        "dateUpdated": "2024-08-07T03:43:13.758Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2008-5095 (GCVE-0-2008-5095)

    Vulnerability from cvelistv5 – Published: 2008-11-14 19:00 – Updated: 2024-08-07 10:40
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/30947 vdb-entryx_refsource_BID
    http://www.securitytracker.com/id?1020792 vdb-entryx_refsource_SECTRACK
    http://www.securitytracker.com/id?1020793 vdb-entryx_refsource_SECTRACK
    http://www.novell.com/support/viewContent.do?exte… x_refsource_CONFIRM
    Date Public
    2008-09-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T10:40:17.182Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "30947",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/30947"
              },
              {
                "name": "1020792",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1020792"
              },
              {
                "name": "1020793",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1020793"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2008-09-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2009-08-15T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "30947",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/30947"
            },
            {
              "name": "1020792",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1020792"
            },
            {
              "name": "1020793",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1020793"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2008-5095",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "30947",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/30947"
                },
                {
                  "name": "1020792",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1020792"
                },
                {
                  "name": "1020793",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1020793"
                },
                {
                  "name": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1",
                  "refsource": "CONFIRM",
                  "url": "http://www.novell.com/support/viewContent.do?externalId=7001157\u0026sliceId=1"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2008-5095",
        "datePublished": "2008-11-14T19:00:00.000Z",
        "dateReserved": "2008-11-14T00:00:00.000Z",
        "dateUpdated": "2024-08-07T10:40:17.182Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }