Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-11-05 17:46
Updated : 2024-02-28 11:01
NVD link : CVE-2007-5809
Mitre link : CVE-2007-5809
CVE.ORG link : CVE-2007-5809
JSON object : View
Products Affected
hitachi
- web_server
- cosminexus_developer_professional_version_6
- cosminexus_server
- cosminexus_application_server_enterprise
- cosminexus_application_server_standard
- ucosminexus_application_server_enterprise
- ucosminexus_application_server_standard
- ucosminexus_developer_light
- cosminexus_developer_standard_version_6
- ucosminexus_developer_standard
- ucosminexus_service_platform
- ucosminexus_service_architect
- cosminexus_developer_light_version_6
- ucosminexus_developer_professional
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')