Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M&R (aka Watch4Net) prior to 6.5u1 and ViPR SRM prior to 3.6.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging privileged access to set crafted values of unspecified fields.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc watch4net |
||
emc vipr srm |