CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2010-3985
https://notcve.org/view.php?id=CVE-2010-3985
Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS)en HP Operations Orchestration anterior v9.0, cuando usa Internet Explorer v6.0, permite a atacantes remotos inyectar código web o HTML de su elección a través de vectores no especificados. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02541822 http://osvdb.org/68906 http://secunia.com/advisories/41983 http://www.securityfocus.com/bid/44331 http://www.vupen.com/english/advisories/2010/2760 https://exchange.xforce.ibmcloud.com/vulnerabilities/62727 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •