VYPR
Unrated severityNVD Advisory· Published May 22, 2009· Updated Jun 16, 2026

CVE-2009-1762

CVE-2009-1762

Description

Multiple cross-site scripting (XSS) vulnerabilities in the WebAccess login page (aka gw/webacc) in Novell GroupWise 7.x before 7.03 HP2 allow remote attackers to inject arbitrary web script or HTML via the (1) GWAP.version or (2) User.Theme (aka User.Theme.index) parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • Novell/Groupwise14 versions
    cpe:2.3:a:novell:groupwise:7.0:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:novell:groupwise:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.0.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.0.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.01:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.02x:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.03:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.03:hp1a:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.03:hp2:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:novell:groupwise:7.0:sp3:*:*:*:*:*:*
    • (no CPE)range: <7.03 HP2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.