CVSS: 4.3EPSS: 1%CPEs: 2EXPL: 0CVE-2012-0132
https://notcve.org/view.php?id=CVE-2012-0132
Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 9.01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Una vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en el HP Business Availability Center (BAC) v9.01 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://secunia.com/advisories/48677 http://www.securityfocus.com/archive/1/522204 http://www.securityfocus.com/bid/52880 https://exchange.xforce.ibmcloud.com/vulnerabilities/74640 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2011-0274
https://notcve.org/view.php?id=CVE-2011-0274
Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 7.x through 7.55 and 8.x through 8.05, and Business Service Management (BSM) through 9.01, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidadad de ejecución de secuencias de comandos en sitios cruzados (XSS) en HP Business Availability Center (BAC) v7.x hasta v8.05 y Business Service Management (BSM) v9.01, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de parámetros no especificados • http://marc.info/?l=bugtraq&m=129562482815203&w=2 http://secunia.com/advisories/43014 http://secunia.com/advisories/43018 http://securitytracker.com/id?1024986 http://www.securityfocus.com/bid/45944 http://www.vupen.com/english/advisories/2011/0188 https://exchange.xforce.ibmcloud.com/vulnerabilities/64846 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •