Cross-site scripting (XSS) vulnerability in Groupmax World Wide Web (GmaxWWW) Desktop 5, 6, and Desktop for Jichitai 6, allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter.
| Date Added | Due Date | Vulnerability Name | Required Action |
|---|---|---|---|
| N/A |
| Type | Version | Base score | Base severity | Vector |
|---|---|---|---|---|
| Primary | 2.0 | 4.3 | MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
| CWE ID | Type | Source |
|---|---|---|
| NVD-CWE-Other | Primary | nvd@nist.gov |
| Hyperlink | Source | Resource |
|---|---|---|
| http://secunia.com/advisories/13321 | cve@mitre.org | Vendor Advisory |
| http://www.hitachi-support.com/security_e/vuls_e/HS04-007_e/01-e.html | cve@mitre.org | Patch |
| http://www.osvdb.org/12154 | cve@mitre.org | Patch |
| http://www.securityfocus.com/bid/11773 | cve@mitre.org | N/A |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/18277 | cve@mitre.org | N/A |
| http://secunia.com/advisories/13321 | af854a3a-2127-422b-91ae-364da2661108 | Vendor Advisory |
| http://www.hitachi-support.com/security_e/vuls_e/HS04-007_e/01-e.html | af854a3a-2127-422b-91ae-364da2661108 | Patch |
| http://www.osvdb.org/12154 | af854a3a-2127-422b-91ae-364da2661108 | Patch |
| http://www.securityfocus.com/bid/11773 | af854a3a-2127-422b-91ae-364da2661108 | N/A |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/18277 | af854a3a-2127-422b-91ae-364da2661108 | N/A |