XSS in Hp Openview_performance_insight
CVE-2011-2406
Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.002 (44.4th percentile) — read the EPSS interpretation.
Affected products
- Hp Openview_performance_insight — versions 5.3, 5.4, 5.31
- N/a — versions n/a
Weakness classification (CWE)
References
- 8333 (x_refsource_SREASON, third-party-advisory)
- SSRT100480 (Vendor Advisory, x_refsource_HP, vendor-advisory)
- 49096 (vdb-entry, x_refsource_BID)