Cross-Site Scripting Vulnerability in HP SiteScope
CVE-2011-1727

Currently unrated

Key Information:

Vendor: HP
Status: Sitescope
Vendor: CVE Published:; 3 May 2011

Summary

The Cross-Site Scripting (XSS) vulnerability present in HP SiteScope versions 9.54, 10.13, 11.01, and 11.1 enables remote attackers to execute arbitrary web scripts or HTML through unspecified vectors. This exploit stems from an issue related to HTML injection, posing a risk to application security and user data integrity. Organizations using affected versions of HP SiteScope should take immediate action to mitigate the risk and secure their systems.

References

http://securityreason.com/securityalert/8235

third-party-advisoryx_refsource_SREASON

http://www.securitytracker.com/id?1025436

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/44354

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
May 3, 2011
Vulnerability Reserved
Apr 19, 2011