CVE-2007-4760

Hitachi Ucosminexus Application Server Enterprise - XSS

Title source: rule

Description

The javadoc tool in Cosminexus Developer's Kit for Java in Cosminexus 7 and 7.5 can generate HTML documents that contain cross-site scripting (XSS) vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this is probably the same issue as CVE-2007-3503.

References (5)

Scores

EPSS 0.0031
EPSS Percentile 54.1%

Classification

CWE
CWE-79
Status draft

Affected Products (50)

hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
hitachi/ucosminexus_application_server_enterprise
... and 35 more

Timeline

Published Sep 08, 2007
Tracked Since Feb 18, 2026