Page 8 of 43 results (0.014 seconds)

CVSS: 6.5EPSS: 0%CPEs: 22EXPL: 0

Unspecified vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en HP Systems Insight Manager (SIM) anteriores a v6.2, permite a usuarios remotos autenticados obtener privilegios a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=128768031706686&w=2 http://www.securityfocus.com/bid/44265 http://www.securitytracker.com/id?1024622 https://exchange.xforce.ibmcloud.com/vulnerabilities/62680 •

CVSS: 4.3EPSS: 0%CPEs: 23EXPL: 0

Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en HP Systems Insight Manager (SIM) anteriores a v6.2, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://marc.info/?l=bugtraq&m=128768031706686&w=2 http://www.securityfocus.com/bid/44262 http://www.securitytracker.com/id?1024622 https://exchange.xforce.ibmcloud.com/vulnerabilities/62679 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.8EPSS: 0%CPEs: 9EXPL: 0

Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en HP Systems Insight Manager (SIM) anteriores a v6.2, permite a atacantes remotos secuestrar la autenticación de víctimas no especificadas a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=128768031706686&w=2 http://www.securitytracker.com/id?1024622 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 4.3EPSS: 1%CPEs: 19EXPL: 0

Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en HP System Insight Manager anterior v6.0 permite a atacantes remotos iyectar código web o HTML de su elección a través de vectores no especificados. • http://marc.info/?l=bugtraq&m=127239985506823&w=2 http://secunia.com/advisories/39645 http://securitytracker.com/id?1023927 http://www.securityfocus.com/bid/39735 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 19EXPL: 0

Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en HP System Insight Manager anterior v6.0 permite a usuarios autenticados remotamente obtener privilegios a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=127239985506823&w=2 http://secunia.com/advisories/39645 http://securitytracker.com/id?1023927 http://www.securityfocus.com/bid/39734 •