This script is Copyright (C) 2015 Tenable Network Security, Inc.
The web application running on the remote host is affected by multiple
cross-site scripting vulnerabilities.
The remote host is running a version of Novell GroupWise WebAccess
that is 2012 prior to 2012 SP4 or 2014 prior to 2014 SP2. It is,
therefore, affected by multiple cross-site scripting vulnerabilities
due to improper validation of user-supplied input. A remote attacker
can exploit this, via a specially crafted request, to execute
arbitrary script code in a user's browser session.
See also :
Upgrade to Novell GroupWise WebAccess version 2012 Support Pack 4
(SP4) / 2014 Support Pack 2 (SP2) or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : true