CVE-2013-6191

HP Operations Orchestration < 7.5 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (2)

[Vendor Advisory] https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04041093

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1029496

Scores

EPSS 0.0062

EPSS Percentile 69.9%

Details

CWE

CWE-79

Status published

Products (4)

hp/operations_orchestration < 7.5

hp/operations_orchestration

n/a/n/a

Published Dec 17, 2013

Tracked Since Feb 18, 2026