Cross site scripting

2021-03-0121:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

29.2%

JSON

Dell EMC SourceOne, versions 7.2SP10 and prior, contain a Stored Cross-Site Scripting vulnerability. A remote low privileged attacker may potentially exploit this vulnerability, to hijack user sessions or to trick a victim application user to unknowingly send arbitrary requests to the server.

CPENameOperatorVersion
emc_sourceoneeq7.2 sp1
emc_sourceoneeq7.2 sp2
emc_sourceoneeq7.2 sp3
emc_sourceoneeq7.2 sp4
emc_sourceoneeq7.2 sp5
emc_sourceoneeq7.2 sp6
emc_sourceoneeq7.2 sp7
emc_sourceoneeq7.2 sp8
emc_sourceoneeq7.2 sp9
emc_sourceoneeq7.2

Name	Operator	Version
emc_sourceone	eq	7.2 sp1
emc_sourceone	eq	7.2 sp2
emc_sourceone	eq	7.2 sp3
emc_sourceone	eq	7.2 sp4
emc_sourceone	eq	7.2 sp5
emc_sourceone	eq	7.2 sp6
emc_sourceone	eq	7.2 sp7
emc_sourceone	eq	7.2 sp8
emc_sourceone	eq	7.2 sp9
emc_sourceone	eq	7.2