CVE-2013-2630 – CA Service Desk Manager Cross Site Scripting

https://notcve.org/view.php?id=CVE-2013-2630

26 Jul 2013 — Cross-site scripting (XSS) vulnerability in CA Service Desk Manager 12.5 through 12.7 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. Vulnerabilidad XSS en CA Service Desk Manager 12.5 a la 12.7, permite a atacantes remotos inyectar secuencias de comandos web y HTML arbitrarias a través de parámetros sin especificar. CA Technologies Support is alerting customers to a potential risk with CA Service Desk Manager. A vulnerability exists that can allow a remote attacke... • http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7B8C50A6C7-8633-45A8-A0A6-3D454437AD53%7D • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •