Cross-site scripting (XSS) vulnerability in the portal login page in Computer Associates CleverPath 4.7 allows remote attackers to execute Javascript via unknown vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/23536
http://www.vupen.com/english/advisories/2005/2822
http://www.securityfocus.com/bid/15783
http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QI70871