3 matches found
CVE-2013-4802
Cross-site scripting XSS vulnerability in HP Application Lifecycle Management ALM Quality Center before 11.51 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka ZDI-CAN-1565...
[security bulletin] HPSBGN02906 rev.1 - HP Application Lifecycle Management Quality Center (ALM), Remote Cross Site Scripting (XSS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03864640 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03864640 Version: 1 HPSBGN02906 rev....
CVE-2013-4802
CVE-2013-4802 affects HP Application Lifecycle Management (ALM) Quality Center prior to v11.51. The flaw is a cross-site scripting (XSS) vulnerability due to improper sanitization of HTML messages, allowing remote attackers to inject arbitrary JavaScript via unspecified vectors. Exploitation requ...