Cross site scripting

2013-07-2913:59:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.2%

JSON

Cross-site scripting (XSS) vulnerability in HP Application Lifecycle Management (ALM) Quality Center before 11.51 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka ZDI-CAN-1565.

CPENameOperatorVersion
application_lifecycle_managementeq11.00
application_lifecycle_managementle11.50

CPE	Name	Operator	Version
	application_lifecycle_management	eq	11.00
	application_lifecycle_management	le	11.50

References

osvdb.org/95646

secunia.com/advisories/53950

www.securityfocus.com/bid/61450

www.securitytracker.com/id/1028834

exchange.xforce.ibmcloud.com/vulnerabilities/85948

h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03864640