Vulnerabilities > CVE-2004-2497 - Unspecified vulnerability in Hitachi web Page Generator and web Page Generator Enterprise

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

hitachi

NVD

Published: 2004-12-31

Updated: 2024-11-20

Summary

Cross-site scripting (XSS) vulnerability in the error handler in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and earlier, when using the default error template and debug mode is set to ON, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Vulnerable Configurations

Part	Description	Count
Application	Hitachi Hitachi WEB Page Generator Enterprise 03_03 Hitachi WEB Page Generator Enterprise 03_03_C Hitachi WEB Page Generator Enterprise 03_00 Hitachi WEB Page Generator Enterprise 04_00_C Hitachi WEB Page Generator Enterprise 03_03_D Hitachi WEB Page Generator Enterprise 04_01_B Hitachi WEB Page Generator Enterprise 04_00 Hitachi WEB Page Generator Enterprise 04_01 Hitachi WEB Page Generator Enterprise 03_02_C Hitachi WEB Page Generator 02_00_C Hitachi WEB Page Generator 01_01_C Hitachi WEB Page Generator 02_00 Hitachi WEB Page Generator 01_00	13

Summary

Vulnerable Configurations

References