Vulnerabilities > Hitachi > JP1 Performance Management Manager WEB Option > 07.00
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-06-17 | CVE-2014-4189 | Cross-Site Scripting vulnerability in Hitachi products Cross-site scripting (XSS) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2014-06-17 | CVE-2014-4188 | Cross-Site Request Forgery (CSRF) vulnerability in Hitachi products Cross-site request forgery (CSRF) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | 6.8 |