CyberSec.Space Logo
Back to CVE Browser

CVE-2011-2406

LOW
3.5
CVSS Severity Score
EPSS Score0.0620%
EPSS Percentile30.20th
PublishedAug 11, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Hp

Openview Performance Insight

= 5.3
πŸ“¦
Hp

Openview Performance Insight

= 5.4
πŸ“¦
Hp

Openview Performance Insight

= 5.31
πŸ“¦
Hp

Openview Performance Insight

= 5.41
πŸ“¦
Hp

Openview Performance Insight

= 5.41.001
πŸ“¦
Hp

Openview Performance Insight

= 5.41.002

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=131292748121409&w=2
πŸ”— http://securityreason.com/securityalert/8333
πŸ”— http://www.securityfocus.com/bid/49096
πŸ”— http://marc.info/?l=bugtraq&m=131292748121409&w=2
πŸ”— http://securityreason.com/securityalert/8333
πŸ”— http://www.securityfocus.com/bid/49096

Related Vulnerabilities

CVE-2010-044710.0

The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate...

CVE-2011-027610.0

HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUs...

CVE-2011-24076.4

Unspecified vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers ...

CVE-2011-24104.3

Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows re...