Description
Cross-site scripting (XSS) vulnerability in HP Operations Agent in HP Operations Manager (formerly OpenView Communications Broker) before 11.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Matt Schmidt · pythonwebappsmultiple
https://www.exploit-db.com/exploits/35076
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_hp
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04472444
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/35076
Scores
EPSS
0.0205
EPSS Percentile
84.0%
Details
CWE
CWE-79
Status
published
Products (1)
hp/operations_agent
< 11.13
Published
Oct 19, 2014
Tracked Since
Feb 18, 2026