CVE-2013-0936

EMC Smarts IP Manager - Cross-Site Scripting via Crafted URL

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in EMC Smarts IP Manager, Smarts Service Assurance Manager, Smarts Server Manager, Smarts VoIP Availability Manager, Smarts Network Protocol Manager, and Smarts MPLS Manager before 9.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

References (1)

Core 1

Core References

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2013-03/0152.html

Scores

EPSS 0.0022

EPSS Percentile 45.2%

Details

CWE

CWE-79

Status published

Products (6)

emc/smarts_ip_manager 9.1

emc/smarts_mpls_manager 9.1

emc/smarts_network_protocol_manager 9.1

emc/smarts_server_manager 9.1

emc/smarts_services_assurance_manager 9.1

emc/smarts_voip_availability_manager 9.1

Published Mar 28, 2013

Tracked Since Feb 18, 2026