CVSS: 9.4EPSS: 2%CPEs: 8EXPL: 0CVE-2013-6207 – Hewlett-Packard SiteScope SOAP Arbitrary File Download and Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2013-6207
05 Mar 2014 — Unspecified vulnerability in the loadFileContents function in the SOAP implementation in HP SiteScope 10.1x, 11.1x, and 11.21 allows remote attackers to read arbitrary files or cause a denial of service via unknown vectors, aka ZDI-CAN-2084. Vulnerabilidad no especificada en la función loadFileContents en la implementación SOAP en HP SiteScope 10.1x, 11.1x y 11.21 permite a atacantes remotos leer archivos arbitrarios o causar una denegación de servicio a través de vectores desconocidos, también conocido com... • https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03969435 •
CVSS: 10.0EPSS: 78%CPEs: 9EXPL: 3CVE-2013-4835 – HP SiteScope issueSiebelCmd SOAP Request Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-4835
02 Nov 2013 — The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765. El servicio SOAP de APISiteScopeImpl en HP SiteScope versiones 10.1x y versiones 11.x anteriores a 11.22, permite a los atacantes remotos omitir la autenticación y ejecutar código arbitrario mediante una petición directa al método issueSiebelCmd, también conocido como ZDI-CAN-1765. This v... • https://packetstorm.news/files/id/124565 •
CVSS: 6.1EPSS: 0%CPEs: 6EXPL: 0CVE-2011-2400 – HP Security Bulletin HPSBMU02692 SSRT100581 2
https://notcve.org/view.php?id=CVE-2011-2400
28 Jul 2011 — Cross-site scripting (XSS) vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de comandos en sitios cruzados en HP SiteScope v9.x, v10.x y v11.x permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. Potential security vulnerabilities have been identified with HP SiteScope. These vulnerabilities could be exploited remotely to allow cross si... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02940969 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 1%CPEs: 6EXPL: 0CVE-2011-2401 – HP Security Bulletin HPSBMU02692 SSRT100581 2
https://notcve.org/view.php?id=CVE-2011-2401
28 Jul 2011 — Session fixation vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to hijack web sessions via unspecified vectors. Una vulnerabilidad de fijación de sesión en HP SiteScope v9.x, v10.x y v11.x permite a atacantes remotos secuestrar sesiones web a través de vectores no especificados. Potential security vulnerabilities have been identified with HP SiteScope. These vulnerabilities could be exploited remotely to allow cross site scripting (XSS) and session fixation attacks. Revision 2 of ... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02940969 •
CVSS: 6.1EPSS: 1%CPEs: 4EXPL: 0CVE-2011-1726 – HP Security Bulletin HPSBMA02667 SSRT100464 3
https://notcve.org/view.php?id=CVE-2011-1726
25 Apr 2011 — Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en HP SiteScope v9.54, v10.13, v11.01, y v11.1, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. Potential security vulnerabilities have been identified with HP SiteScope. These vulnerabilities coul... • http://marc.info/?l=bugtraq&m=130374351406700&w=2 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 1%CPEs: 4EXPL: 0CVE-2011-1727 – HP Security Bulletin HPSBMA02667 SSRT100464 3
https://notcve.org/view.php?id=CVE-2011-1727
25 Apr 2011 — Cross-site scripting (XSS) vulnerability in HP SiteScope 9.54, 10.13, 11.01, and 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to an "HTML injection" issue. Vulnerabilidad de ejecución de comandos en sitios cruzados(XSS) en HP SiteScope v9.54, v10.13, v11.01 y v11.1 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados, relacionados con un problema de "inyección de HTML". Potential security vulnerab... • http://marc.info/?l=bugtraq&m=130374351406700&w=2 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •