VYPR
Medium severity6.1NVD Advisory· Published Mar 24, 2016· Updated Jun 17, 2026

CVE-2016-1599

CVE-2016-1599

Description

Cross-site scripting (XSS) vulnerability in NetIQ Self Service Password Reset (SSPR) 2.x and 3.x before 3.3.1 HF2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:a:microfocus:self_service_password_reset:2.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:microfocus:self_service_password_reset:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:self_service_password_reset:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:self_service_password_reset:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:self_service_password_reset:3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:self_service_password_reset:3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:microfocus:self_service_password_reset:3.3.1:*:*:*:*:*:*:*
    • (no CPE)range: < 3.3.1 HF2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.