According to a CA advisory, "CA Service Desk contains multiple vulnerabilities that can allow a remote attacker to conduct cross-site scripting attacks. The vulnerabilities are due to insecure handling of passed variables in multiple web forms. An attacker, who can convince a user to click on a specially crafted link, can potentially conduct cross-site scripting attacks." Updates are available.
The Leader in Network Knowledge
