EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to conduct clickjacking attacks via a crafted web page.
RSA Archer GRC versions prior to 5.3 and 5.2SP1 suffer from path traversal, cross site scripting, cross-domain policy, and clickjacking vulnerabilities.