CVE-2017-14799

A cross site scripting attack in handling the ESP login parameter handling in NetIQ Access Manager before 4.3.3 could be used to inject javascript code into the login page. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt