5 matches found
CVE-2010-0447
HP OVPI CVE-2010-0447 affects HP OpenView Performance Insight (OVPI) 5.4 and earlier. The vulnerability lies in the helpmanager servlet of the web server, where insufficient input validation and authentication allow remote attackers to upload arbitrary JSP pages and execute OS commands. Exploitat...
CVE-2011-0276
HP OpenView Performance Insight Server (OVPI) versions 5.2, 5.3, 5.31, 5.4, and 5.41 are affected by a remote code execution vulnerability due to a hidden account in the com.trinagy.security.XMLUserManager Java class. The vulnerability allows an attacker to trigger the doPost() method of com.trin...
CVE-2011-2410
CVE-2011-2410 is an XSS vulnerability in HP OpenView Performance Insight (versions 5.3, 5.31, 5.4, 5.41, 5.41.001, 5.41.002). The available documents consistently describe a cross-site scripting flaw that lets an attacker inject arbitrary web script or HTML via unspecified vectors. Connected sour...
CVE-2011-2406
HP OpenView Performance Insight (PI) vulnerability CVE-2011-2406 affects PI versions 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002. The issue is a cross‑site scripting (XSS) vulnerability that allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors (documen...
CVE-2011-2407
HP OpenView Performance Insight (PI) vulnerability CVE-2011-2407 affects PI versions 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002. The cited OpenVAS entries describe a security-bypass and HTML-injection issue that could allow a remote attacker to obtain access to the affected system. HP’s securit...