CVE-2011-2661

CVSS 4.3 - MEDIUM

Description

Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 allow remote attackers to inject arbitrary web script or HTML via the (1) Directory.Item.name or (2) Directory.Item.displayName parameter.

Affected Products

Vendor	Product	Version
novell	groupwise	`8.0`
novell	groupwise	`8.0`
novell	groupwise	`8.0`

References

http://www.novell.com/support/viewContent.do?exter...

https://bugzilla.novell.com/show_bug.cgi?id=702786

http://www.novell.com/support/viewContent.do?exter...

https://bugzilla.novell.com/show_bug.cgi?id=702786

Weakness Types

CWE-79

CVE Information

CVE ID:: CVE-2011-2661
Published:: 2011-10-08
Modified:: 2026-04-29
CVSS Score:: 4.3
Severity:: MEDIUM
Vector:: AV:N/AC:M/Au:N/C:N/I:P/A:N

Affected Vendors

novell

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL