CVE-2008-5719

Published Dec 26, 2008
Last updated 16 years ago
CVSS info 4.3
Overview

Description: Cross-site scripting (XSS) vulnerability in Hitachi Groupmax Web Workflow SDK Set for Active Server Pages before 06-52-/C and Hitachi Groupmax Workflow - Development Kit for Active Server Pages before 06-52-/A allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses

nvd@nist.gov: CWE-79
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "970367C6-1AEE-4C40-AC0D-7384DABE7C0A",
            "versionEndIncluding": "06-52_b"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "127792A9-5BFF-4DAB-BE37-091BCDE81414"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "564EEAFC-3253-4F1A-AEA9-D35A72A9D00A"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1867AB6D-867D-4B28-99C5-6517F8F293C5"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EFDD3AF3-12C5-49DE-9CDA-0449381336F0"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_d:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24393FD0-F237-4CBB-80AB-D91EF7FA75A4"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73A4B03B-328C-4484-9D50-BAF02893889A"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D6114DF-F46E-4BDD-847D-338F9A11E999"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C7BE040-D36E-493E-BB12-F27195726991"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBC102A3-DD3B-4989-98EF-BE3CAFFA94BD"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_d:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92829CAC-FD6D-4900-B1E1-DCF94AF9E145"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75CA0776-4705-4D9E-8F5A-216F04E4B0F6"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D74C462-8CCC-4D9E-8280-F7D1EFD99593"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10_b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA6C17F6-6CCE-46A2-9E35-BEBB87320EED"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10_c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8DF9449-8FFA-46A8-9EB8-F8D66CF87FF2"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C112803-F9FC-42F6-A94F-6F1828159C5C"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A957A81-3537-463F-BD71-A79158172A39"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4308F30C-28F7-4CC2-87A7-7DBA68B010F2"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B6CB1BA-4094-42A4-B88D-CF3A34F79C59"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_d:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AC3C0E1-BBBF-47E5-AC2F-A75E900704B8"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_e:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6517A78C-246C-4834-B197-E562408070E3"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63FB5080-E1E0-45A3-9701-38F1405ACC36"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1360FF36-04A2-477E-9B73-94AAEE8CEE06"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20_b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC0AAAF9-A390-4B48-971C-43D3E91603F8"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20_c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C96627C-D320-43C9-996A-2D1A36F7B124"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70A74D9C-9887-4524-8D08-26947C2147DA"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D7F869E6-5913-4671-A88B-74AF7569DAA3"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBF9061B-714B-415A-9938-0A2D3F0D6EF6"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62F0AF46-F5F8-4021-8E4E-852C7158B034"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-03_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "448026A0-E0A6-464A-81AC-F054A4A56AD1"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-50:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9EA1066-6EA1-4BFD-A2DB-F3E0ADF8BCA7"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-51:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6227E691-D128-47F1-A17C-0326A3B4AC1D"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-52:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AC9A5AC-2B2F-40A2-BAAC-7B50B2B14DAD"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-52_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D29C195A-B1D0-40BD-8D1A-474DD30238C1"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9313F7D1-75D8-4541-A913-18CEBB760EF7",
            "versionEndIncluding": "06-52"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:3-10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F181E44-B7A4-4874-862E-4C2C5711BEE8"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:3-10_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31CE75B1-BB8F-429F-91DB-1EE5D4EAC78C"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:3-10_b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92432528-0A35-4E7E-8BA7-BE6EFA1FE689"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68F1C3DE-5BCC-45B7-AE3B-AE39B0DDD763"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-00_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FD414F9-F7BB-4B77-A072-48EFABF08414"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-00_b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94FB1BE8-8D8F-448A-8B21-93C8298C0BC3"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35A2431C-2CC0-4428-8654-96749A36E0CC"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-10_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02712285-5746-427B-81AB-78C078A1917E"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABDFBC58-DEAA-4D4C-BDE9-74725C513912"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-11_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D98A1F6-0DCA-4B24-991A-6BABE9214D0D"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF737FC6-414E-4BC5-A0E1-B2562B3AEF86"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-20_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD4E473F-41EC-46E3-A598-1CA8515C3919"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "486BCEF1-EC15-406F-8BDE-57C958AAD2FC"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "272EEBC9-1462-4566-AD38-6DEDD30AE51B"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1119349C-A2DA-4170-97AF-B1DBB1F7266E"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "753DF9B2-008F-498B-961C-873A7DDA13E5"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-03_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CB1AFC6-2711-499E-A8CD-BFC7617E6685"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-50:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86B391D2-F27D-4666-8091-324EA24B694C"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-51:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F68E3986-5C94-4AAA-B24A-A98D8068E21E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
