Cross-Site Scripting Vulnerability in HP Version Control Repository Manager
CVE-2010-3994

Currently unrated

Key Information:

Vendor: HP
Status: Version Control Repository Manager; HP
Vendor: CVE Published:; 28 October 2010

Summary

A cross-site scripting vulnerability exists in the HP Version Control Repository Manager (VCRM) prior to version 6.2. This flaw allows attackers to inject arbitrary web scripts or HTML content through unspecified vectors, potentially exposing users to malicious payloads. Successful exploitation could lead to unauthorized actions performed by users interacting with affected systems. Organizations using these products are encouraged to apply the latest security updates to mitigate risks associated with this vulnerability.

References

http://secunia.com/advisories/41998

third-party-advisoryx_refsource_SECUNIA

http://marc.info/?l=bugtraq&m=128811016023086&w=2

vendor-advisoryx_refsource_HP

http://securitytracker.com/id?1024644

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Oct 28, 2010
Vulnerability Reserved
Oct 18, 2010