CVE-2011-2402
HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 - Cross-Site Scripting
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/74133
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/8321
Vendor Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=131188727830971&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45454
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/48922
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1025862
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/68885
Scores
EPSS
0.0067
EPSS Percentile
71.6%
Details
CWE
CWE-79
Status
published
Products (5)
hp/network_automation
7.2
hp/network_automation
7.5
hp/network_automation
7.6
hp/network_automation
9.0
hp/network_automation
9.10
Published
Aug 01, 2011
Tracked Since
Feb 18, 2026