OpenText LiveLink Multiple Cross Site Scripting Vulnerabilities

Attackers can exploit these issues using a browser or readily available tools.

The following example URIs are available:

https://www.example.com/livelink/livelink?func=ll&objId=514&objAction=browse&viewType=aa">[XSS]

https://www.example.com/livelinkdav/nodes/OOB_DAVWindow.html?func=oobget&nodeid=514&support=/livelinksupport/&setctx=');[XSS]

https://www.example.com/livelink/livelink?func=ll&objid=1&objAction=browse&sort=[XSS]


 

Privacy Statement
Copyright 2010, SecurityFocus