Unrated severityNVD Advisory· Published Apr 1, 2006· Updated Apr 16, 2026

CVE-2006-1574

Description

Cross-site scripting (XSS) vulnerability in Groupmax World Wide Web, World Wide Web Desktop, World Wide Web for Scheduler, and Desktop for Scheduler, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Affected products

Hitachi/Groupmax World Wide Web2 versions
cpe:2.3:a:hitachi:groupmax_world_wide_web:2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hitachi:groupmax_world_wide_web:2:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:groupmax_world_wide_web:3:*:*:*:*:*:*:*
Hitachi/Groupmax World Wide Web Desktop3 versions
cpe:2.3:a:hitachi:groupmax_world_wide_web_desktop:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:hitachi:groupmax_world_wide_web_desktop:*:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:groupmax_world_wide_web_desktop:5:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:groupmax_world_wide_web_desktop:6:*:*:*:*:*:*:*
Hitachi/Groupmax World Wide Web Desktop Scheduler
cpe:2.3:a:hitachi:groupmax_world_wide_web_desktop_scheduler:5:*:*:*:*:*:*:*
Hitachi/Groupmax World Wide Web Scheduler2 versions
cpe:2.3:a:hitachi:groupmax_world_wide_web_scheduler:2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hitachi:groupmax_world_wide_web_scheduler:2:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:groupmax_world_wide_web_scheduler:3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.hitachi-support.com/security_e/vuls_e/HS06-005_e/index-e.htmlnvdPatch
secunia.com/advisories/19483nvdVendor Advisory
www.osvdb.org/24295nvd
www.securityfocus.com/bid/17337nvd
www.vupen.com/english/advisories/2006/1180nvd
exchange.xforce.ibmcloud.com/vulnerabilities/25574nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000