Cross-site scripting (XSS) vulnerability in the error handler in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and previous versions, when using the default error template and debug mode is set to ON, allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hitachi web page generator 01_01_c |
||
hitachi web page generator 02_00 |
||
hitachi web page generator enterprise 04_00 |
||
hitachi web page generator enterprise 04_00_c |
||
hitachi web page generator enterprise 04_01 |
||
hitachi web page generator enterprise 03_02_c |
||
hitachi web page generator enterprise 03_03 |
||
hitachi web page generator 01_00 |
||
hitachi web page generator enterprise 03_03_c |
||
hitachi web page generator enterprise 03_03_d |
||
hitachi web page generator 02_00_c |
||
hitachi web page generator enterprise 03_00 |
||
hitachi web page generator enterprise 04_01_b |