Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-11-05 09:46
Updated : 2011-03-07 19:01
NVD link : CVE-2007-5809
Mitre link : CVE-2007-5809
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
hitachi
- ucosminexus_developer_standard
- cosminexus_application_server_enterprise
- ucosminexus_service_platform
- cosminexus_developer_standard_version_6
- cosminexus_application_server_standard
- cosminexus_server
- cosminexus_developer_professional_version_6
- ucosminexus_application_server_enterprise
- ucosminexus_application_server_standard
- ucosminexus_developer_light
- cosminexus_developer_light_version_6
- web_server
- ucosminexus_developer_professional
- ucosminexus_service_architect