Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Cosminexus Collaboration Portal 06-00 through 06-10-/B, Groupmax Collaboration Portal 07-00 through 07-10-/B, and Groupmax Collaboration Web Client 07-00 through 07-10-/A allow remote attackers to inject arbitrary web script or HTML via the (1) Schedule and (2) Calendar components.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Groupmax_collaboration_web_client | Hitachi | * | 07_10_a |
Groupmax_collaboration_web_client | Hitachi | 07_00 | 07_00 |
Groupmax_collaboration_portal | Hitachi | 07_00 | 07_00 |
Cosminexus_collaboration_portal | Hitachi | * | 06_10_b |
Cosminexus_collaboration_portal | Hitachi | 06_00 | 06_00 |
Groupmax_collaboration_portal | Hitachi | * | 07_10_b |