ESA-2015-122: EMC Documentum CenterStage Cross-site Scripting Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-122: EMC Documentum CenterStage Cross-site Scripting Vulnerability EMC Identifier: ESA-2015-122 CVE Identifier: CVE-2015-4528 Severity Rating: CVSS v2 Base Score: 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P Affected products: • EMC Documentum CenterStage...

EMC Documentum CenterStage Cross-Site Scripting Vulnerability

EMC Documentum CenterStage is a document management service. A cross-site scripting vulnerability in EMC Documentum CenterStage allows remote attackers to construct malicious URIs, trick users into parsing them, and perform malicious actions in the context of the target user...

Cross site scripting

Cross-site scripting XSS vulnerability in EMC Documentum CenterStage 1.2SP1 and 1.2SP2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-4528

Cross-site scripting XSS vulnerability in EMC Documentum CenterStage 1.2SP1 and 1.2SP2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-4528

EMC Documentum CenterStage is affected by a stored XSS in versions 1.2SP1 and 1.2SP2. The issue allows remote authenticated users to inject script/HTML via unspecified vectors; impact is tied to the authenticated user context. EMC’s advisory ESA-2015-122 recommends upgrading to CenterStage 1.2SP2...