Cross-Site Scripting Vulnerabilities in Hitachi Groupmax Collaboration Portal and uCosminexus Collaboration Portal
CVE-2006-3574

Currently unrated

Key Information:

Vendor: Hitachi
Status: Groupmax Collaboration Portal; Groupmax Collaboration Web Client; Cosminexus Collaboration Portal
Vendor: CVE Published:; 13 July 2006

Summary

Multiple cross-site scripting vulnerabilities exist in the Hitachi Groupmax Collaboration Portal and uCosminexus Collaboration Portal, which allow remote attackers to inject and execute malicious scripts through various undefined vectors. These weaknesses can compromise the security of users by allowing the unauthorized execution of scripts in their web browsers. Attack vectors for exploitation were not explicitly disclosed, heightening the risk of potential attacks targeting unaware users.

References

http://www.vupen.com/english/advisories/2006/2665

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/20926

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/27605

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jul 13, 2006
Vulnerability Reserved
Jul 12, 2006