Ca · Ca Siteminder · CVE-2013-5968
**Name of the Vulnerable Software and Affected Versions**
CA SiteMinder versions 12.0 through 12.51
CA SiteMinder 6 Web Agents (affected versions not specified)
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via vectors involving a `character` (double quote).
**Recommendations**
For CA SiteMinder versions 12.0 through 12.51, update to a version that contains a fix for this issue.
For CA SiteMinder 6 Web Agents, at the moment, there is no information about a newer version that contains a fix for this vulnerability.