iManager vulnerable to XSS via Improper Input Validation

CVE-2020-11859

What is CVE-2020-11859?

An improper input validation vulnerability exists in OpenText iManager, which allows an attacker to exploit the application and execute Cross-Site Scripting (XSS) attacks. This vulnerability potentially permits the injection of malicious scripts into web pages viewed by other users, compromising their data and enabling session hijacking. Systems utilizing versions of iManager prior to 3.2.3 are susceptible to this security flaw, necessitating immediate action to upgrade to a secure version and mitigate risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References