Multiple cross-site scripting (XSS) vulnerabilities in SpringSource tc Server 6.0.20.B and previous versions, Application Management Suite (AMS) prior to 2.0.0.SR4, Hyperic HQ Open Source prior to 4.2.x, Hyperic HQ 4.0 Enterprise prior to 4.0.3.2, and Hyperic HQ 4.1 Enterprise prior to 4.1.2.1 allow remote malicious users to inject arbitrary web script or HTML via the description field and unspecified "input fields."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
springsource tc server |
||
springsource hyperic hq |
||
springsource application management suite |