Description
Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Groupmax Collaboration Portal and Web Client before 07-20-/D, and uCosminexus Collaboration Portal and Forum/File Sharing before 06-20-/C, allow remote attackers to "execute malicious scripts" via unknown vectors (aka HS06-014-01).
Affected products
- Hitachi / cosminexus_collaboration_portal06_10_b
- Hitachi / cosminexus_collaboration_portal6.2 – 6.2
- Hitachi / cosminexus_collaboration_portal06_00 – 06_00
- Hitachi / groupmax_collaboration_portal07_10_b
- Hitachi / groupmax_collaboration_portal7.2 – 7.2
- Hitachi / groupmax_collaboration_portal07_00 – 07_00
- Hitachi / groupmax_collaboration_web_client07_10_a
- Hitachi / groupmax_collaboration_web_client7.2 – 7.2
- Hitachi / groupmax_collaboration_web_client07_00 – 07_00
References
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/2665
- VENDOR_ADVISORYhttp://secunia.com/advisories/20926
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/27605
- MISChttp://www.hitachi-support.com/security_e/vuls_e/HS06-014_e/index-e.html
- MISChttp://www.securityfocus.com/bid/18830
- MISChttp://www.hitachi-support.com/security_e/vuls_e/HS06-014_e/01-e.html
Updated 15m ago · 2 sources