cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2013-1096,https://securityvulnerability.io/vulnerability/CVE-2013-1096,,Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId.,Novell,Identity Manager Roles Based Provisioning Module,,,0.010119999758899212,false,false,false,false,,false,false,2013-12-28T02:00:00.000Z,0
CVE-2013-1083,https://securityvulnerability.io/vulnerability/CVE-2013-1083,,Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and attack vectors.,Novell,Identity Manager Roles Based Provisioning Module,,,0.003229999914765358,false,false,false,false,,false,false,2013-03-29T16:09:00.000Z,0
CVE-2011-2227,https://securityvulnerability.io/vulnerability/CVE-2011-2227,,"Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 709603.",Novell,Identity Manager Roles Based Provisioning Module,,,0.0021200000774115324,false,false,false,false,,false,false,2011-10-08T01:00:00.000Z,0
CVE-2011-1696,https://securityvulnerability.io/vulnerability/CVE-2011-1696,,"Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the apwaDetail (aka apwaDetailId) parameter, aka Bug 692972.",Novell,Identity Manager Roles Based Provisioning Module,,,0.0021200000774115324,false,false,false,false,,false,false,2011-10-08T01:00:00.000Z,0
CVE-2010-4324,https://securityvulnerability.io/vulnerability/CVE-2010-4324,,Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Novell,"Identity Manager Roles Based Provisioning Module,Identity Manager",,,0.0024399999529123306,false,false,false,false,,false,false,2011-01-07T18:00:00.000Z,0
CVE-2010-3264,https://securityvulnerability.io/vulnerability/CVE-2010-3264,,"The engine installer in Novell Identity Manager (aka IDM) 3.6.1 stores admin tree credentials in /tmp/idmInstall.log, which allows local users to obtain sensitive information by reading this file.",Novell,Identity Manager,,,0.0005000000237487257,false,false,false,false,,false,false,2010-09-08T20:00:00.000Z,0
CVE-2008-5095,https://securityvulnerability.io/vulnerability/CVE-2008-5095,,"Cross-site scripting (XSS) vulnerability in the Novell User Application 3.0.1, 3.5.0, and 3.5.1; and Identity Manager Roles Based Provisioning Module 3.6.0 and 3.6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.",Novell,"Identity Manager Roles Based Provisioning Module,User Application",,,0.003379999892786145,false,false,false,false,,false,false,2008-11-14T19:00:00.000Z,0
CVE-2007-6625,https://securityvulnerability.io/vulnerability/CVE-2007-6625,,"The Platform Service Process (asampsp) in Fan-Out Driver Platform Services for Novell Identity Manager (IDM) 3.5.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified network traffic that triggers a syslog message containing invalid format string specifiers, as demonstrated by a Nessus scan.",Novell,Identity Manager,,,0.03540999814867973,false,false,false,false,,false,false,2008-01-04T00:00:00.000Z,0
CVE-2007-4526,https://securityvulnerability.io/vulnerability/CVE-2007-4526,,"The Client Login Extension (CLE) in Novell Identity Manager before 3.5.1 20070730 stores the username and password in a local file, which allows local users to obtain sensitive information by reading this file.",Novell,"Client Login Extension \(cle\),Identity Manager",,,0.0004799999878741801,false,false,false,false,,false,false,2007-08-25T00:00:00.000Z,0
CVE-2007-0110,https://securityvulnerability.io/vulnerability/CVE-2007-0110,,"Cross-site scripting (XSS) vulnerability in nidp/idff/sso in Novell Access Manager Identity Server before 3.0.0-1013 allows remote attackers to inject arbitrary web script or HTML via the IssueInstant parameter, which is not properly handled in the resulting error message.",Novell,Access Manager Identity Server,,,0.030330000445246696,false,false,false,false,,false,false,2007-01-09T00:00:00.000Z,0