CVE-2013-3286
EMC Documentum eRoom < 7.4.4 - Cross-Site Scripting via Crafted URL
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom before 7.4.4 P11 allow remote attackers to inject arbitrary web script or HTML via a crafted URL.
References (1)
Core 1
Core References
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2013-11/0019.html
Scores
EPSS
0.0032
EPSS Percentile
54.9%
Details
CWE
CWE-79
Status
published
Products (6)
emc/documentum_eroom
7.3.0
emc/documentum_eroom
7.4.0
emc/documentum_eroom
7.4.1
emc/documentum_eroom
7.4.2
emc/documentum_eroom
7.4.3
emc/documentum_eroom
< 7.4.4
Published
Nov 06, 2013
Tracked Since
Feb 18, 2026