CVE-2010-4322

Name of the Vulnerable Software and Affected Versions Novell Vibe OnPrem version 3 BETA

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote authenticated users to inject arbitrary web script or HTML via the Micro Blog field, also known as What Are You Working On?.

Recommendations For Novell Vibe OnPrem version 3 BETA, consider restricting access to the Micro Blog field until a fix is available. As a temporary workaround, disabling the ability to input HTML in this field can help minimize the risk of exploitation.