Vulnerabilities > HP > Storeonce Backup System Software

DATE CVE VULNERABILITY TITLE RISK
2016-01-05 CVE-2015-5447 Cross-site Scripting vulnerability in HP Storeonce Backup System Software 3.13.0
Cross-site scripting (XSS) vulnerability in HP StoreOnce Backup system software before 3.13.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
network
low complexity
hp CWE-79
5.4
5.4
2016-01-05 CVE-2015-5446 Unspecified vulnerability in HP Storeonce Backup System Software 3.13.0
HP StoreOnce Backup system software before 3.13.1 allows remote attackers to execute arbitrary code via unspecified vectors.
high complexity
hp
7.5
7.5
2016-01-05 CVE-2015-5445 Cross-Site Request Forgery (CSRF) vulnerability in HP Storeonce Backup System Software 3.13.0
Cross-site request forgery (CSRF) vulnerability in HP StoreOnce Backup system software before 3.13.1 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
network
low complexity
hp CWE-352
8.8
8.8