Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2010-3003

Published: 10/09/2010 Updated: 09/10/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 455
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Hp

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition prior to 8.5.0-11 on Linux allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

hp insight diagnostics 7.6.0-23

hp insight diagnostics 7.7.0-142

hp insight diagnostics 7.8.0-159

hp insight diagnostics 7.9.1-15

hp insight diagnostics 7.0.0-30

hp insight diagnostics 7.5.5-1

hp insight diagnostics 6.3.0-15

hp insight diagnostics 6.3.1-1

hp insight diagnostics 7.4.0-11

hp insight diagnostics 7.0.1-8

hp insight diagnostics 7.9.0-105

hp insight diagnostics 7.5.0-14

hp insight diagnostics

Exploits

Exploit DB: HP Insight Diagnostics Online Edition 8.4 - 'parameters.php?device' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected ...
Exploit DB: HP Insight Diagnostics Online Edition 8.4 - 'custom.php?testmode' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the a ...
Exploit DB: HP Insight Diagnostics Online Edition 8.4 - 'survey.php?category' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affec ...
Exploit DB: HP Insight Diagnostics Online Edition 8.4 - 'globals.php?tabpage' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the aff ...
Exploit DB: HP Insight Diagnostics Online Edition 8.4 - 'idstatusframe.php' Multiple Cross-Site Scripting Vulnerabilities
source: wwwsecurityfocuscom/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affecte ...

References

CWE-79http://www.vupen.com/english/advisories/2010/2245http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02492472http://www.procheckup.com/vulnerability_manager/vulnerabilities/pr10-05https://nvd.nist.govhttps://www.exploit-db.com/exploits/34543/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook