CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2011-1727
https://notcve.org/view.php?id=CVE-2011-1727
Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to an "HTML injection" issue. Vulnerabilidad de ejecución de comandos en sitios cruzados(XSS) en HP SiteScope v9.54, v10.13, v11.01 y v11.1 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados, relacionados con un problema de "inyección de HTML". • http://marc.info/?l=bugtraq&m=130374351406700&w=2 http://osvdb.org/72061 http://secunia.com/advisories/44322 http://secunia.com/advisories/44354 http://securityreason.com/securityalert/8235 http://www.securityfocus.com/bid/47554 http://www.securitytracker.com/id?1025436 http://www.vupen.com/english/advisories/2011/1091 https://exchange.xforce.ibmcloud.com/vulnerabilities/67020 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2011-1726
https://notcve.org/view.php?id=CVE-2011-1726
Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en HP SiteScope v9.54, v10.13, v11.01, y v11.1, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://marc.info/?l=bugtraq&m=130374351406700&w=2 http://osvdb.org/72060 http://secunia.com/advisories/44322 http://secunia.com/advisories/44354 http://securityreason.com/securityalert/8235 http://www.securityfocus.com/bid/47554 http://www.securitytracker.com/id?1025436 http://www.vupen.com/english/advisories/2011/1091 https://exchange.xforce.ibmcloud.com/vulnerabilities/67018 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4350
https://notcve.org/view.php?id=CVE-2007-4350
Cross-site scripting (XSS) vulnerability in the management interface in HP SiteScope 9.0 build 911 allows remote attackers to inject arbitrary web script or HTML via an SNMP trap message. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la interfaz de gestión de HP SiteScope 9.0 build 911 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de un mensaje trampa SNMP. • http://secunia.com/advisories/27126 http://secunia.com/secunia_research/2007-84 http://securityreason.com/securityalert/4447 http://securitytracker.com/id?1021068 http://www.securityfocus.com/archive/1/497548/100/0/threaded http://www.securityfocus.com/bid/31816 http://www.vupen.com/english/advisories/2008/2854 https://exchange.xforce.ibmcloud.com/vulnerabilities/45958 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2006-5122
https://notcve.org/view.php?id=CVE-2006-5122
Multiple cross-site scripting (XSS) vulnerabilities in Mercury SiteScope 8.2 (8.1.2.0) allow remote authenticated users to inject arbitrary web script or HTML via (1) "any field create name field" except "create new group name" or (2) any description field. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en ercury SiteScope 8.2 (8.1.2.0) permite a un usuario validado inyectar secuencias de comandos web o HTML de su elección a través de (1)"cualquier campo crea un campo conocido" excepto "crear nuevo nombre ed grupo" o (2) cualquier descripción de campo. • http://secunia.com/advisories/22215 http://securityreason.com/securityalert/1670 http://www.securityfocus.com/archive/1/447397/100/0/threaded http://www.securityfocus.com/bid/20275 http://www.vupen.com/english/advisories/2006/3888 https://exchange.xforce.ibmcloud.com/vulnerabilities/29295 •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2006-5134
https://notcve.org/view.php?id=CVE-2006-5134
Mercury SiteScope 8.2 (8.1.2.0) allows remote authenticated users to cause a denial of service (loss of connectivity to the classic interface) via attempted HTML injection into the "new monitor description" field. Mercury SiteScope 8.2 (8.1.2.0) permite a un usuario validado remoto provocar denegación de servicio (pérdida de conectividad en la interfaz clasica) a través de la inyección intencionada del HTML en el campo de “nueva descripción del monitor”. • http://securityreason.com/securityalert/1670 http://www.securityfocus.com/archive/1/447397/100/0/threaded http://www.securityfocus.com/bid/20275 https://exchange.xforce.ibmcloud.com/vulnerabilities/29298 •