CVE-2010-4114

Description

Cross-site scripting (XSS) vulnerability in HP Discovery & Dependency Mapping Inventory (DDMI) 2.5x, 7.5x, and 7.6x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

• HP / discovery&dependency_mapping_inventory2.50 – 2.50
• HP / discovery&dependency_mapping_inventory2.51 – 2.51
• HP / discovery&dependency_mapping_inventory2.52 – 2.52
• HP / discovery&dependency_mapping_inventory7.50 – 7.50
• HP / discovery&dependency_mapping_inventory7.51 – 7.51
• HP / discovery&dependency_mapping_inventory7.60 – 7.60

References

• MISChttp://www.securitytracker.com/id?1024903
• MISChttp://www.securityfocus.com/archive/1/515286
• MISChttp://www.securityfocus.com/archive/1/515286
• VENDOR_ADVISORYhttp://secunia.com/advisories/42637