CVE-2016-6840
Huawei OceanStor ISM vulnerable to cross-site scripting (XSS) in its management interface before V200R001C04SPC200. The issue allows remote attackers to inject arbitrary web script or HTML via the loginName parameter to cgi-bin/doLogin_CgiEntry and possibly other vectors. Affects the ISM product'...