Vulnerability in Hitachi Cosminexus_application_server
CVE-2007-0514
Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML via (1) HTTP Expect headers or (2) image…
EPSS: 0.012 (63.7th percentile) — read the EPSS interpretation.
Affected products
- Hitachi Cosminexus_application_server — versions 6
- Hitachi Cosminexus_application_server_version_5
- Hitachi Cosminexus_developer_light_version_6
- Hitachi Cosminexus_developer_professional_version_6
- Hitachi Cosminexus_developer_standard_version_6
- Hitachi Cosminexus_developer_version_5
- Hitachi Cosminexus_server_-_enterprise_edition
- Hitachi Cosminexus_server_-_standard_edition
- Hitachi Cosminexus_server_-_standard_edition_version_4
- Hitachi Cosminexus_server_-_web_edition
References
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)