CA’s support is alerting customers to a security risk with CA eHealth Performance Manager. A cross-site scripting vulnerability exists that can allow a remote attacker to potentially gain sensitive information. CA has provided guidance to remediate the vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/86608/CA20100223-01.txt
Source: https://packetstormsecurity.com/files/86608/CA-eHealth-Performance-Manager-Security-Notice.html