Unrated severityNVD Advisory· Published Nov 5, 2007· Updated Jun 16, 2026
CVE-2007-5809
CVE-2007-5809
Description
Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.
Affected products
45cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:*:*:*:*:*:*:*:*range: <=06_51_j
- cpe:2.3:a:hitachi:cosminexus_application_server_standard:*:*:*:*:*:*:*:*range: <=06_51_j
- cpe:2.3:a:hitachi:ucosminexus_application_server_enterprise:*:*:*:*:*:*:*:*range: <=07_50_01
- cpe:2.3:a:hitachi:ucosminexus_application_server_standard:*:*:*:*:*:*:*:*range: <=07_50_01
- cpe:2.3:a:hitachi:cosminexus_developer_light_version_6:*:*:*:*:*:*:*:*Range: <=06_51_j
cpe:2.3:a:hitachi:cosminexus_developer_professional_version_6:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hitachi:cosminexus_developer_professional_version_6:*:*:*:*:*:*:*:*range: <=06_51_j
- cpe:2.3:a:hitachi:ucosminexus_developer_professional:*:*:*:*:*:*:*:*range: <=07_50_01
- cpe:2.3:a:hitachi:cosminexus_developer_standard_version_6:*:*:*:*:*:*:*:*Range: <=06_51_j
cpe:2.3:a:hitachi:ucosminexus_developer_light:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hitachi:ucosminexus_developer_light:*:*:*:*:*:*:*:*range: <=06_71_d
- cpe:2.3:a:hitachi:ucosminexus_developer_standard:*:*:*:*:*:*:*:*range: <=07_50_01
- cpe:2.3:a:hitachi:ucosminexus_service_architect:*:*:*:*:*:*:*:*Range: <=07_50_01
- cpe:2.3:a:hitachi:ucosminexus_service_platform:*:*:*:*:*:*:*:*Range: <=07_50_01
cpe:2.3:a:hitachi:web_server:01_00:*:hpux:*:*:*:*:*+ 31 more
- cpe:2.3:a:hitachi:web_server:01_00:*:hpux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_00:*:solaris:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_01:*:aix:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_01_d:*:linux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_01:*:linux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_01:*:turbolinux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_02_d:*:hpux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_02_d:*:solaris:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:01_02_e:*:aix:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_00:*:aix:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_00_a:*:linux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_00:*:hpux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_00:*:linux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_00:*:solaris:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_00:*:turbolinux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_00:*:windows:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_02:*:hpux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_02:*:hpux\(ipf\):*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_02:*:linux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_04_b:*:aix:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_04_b:*:hpux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_04_b:*:hpux\(ipf\):*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_04_b:*:solaris:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_04_b:*:windows:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:02_06_a:*:linux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:03_00_01:*:solaris:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:03_00_01:*:windows:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:03_00:*:aix:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:03_00:*:hpux\(ipf\):*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:03_00:*:linux:*:*:*:*:*
- cpe:2.3:a:hitachi:web_server:03_00:*:windows:*:*:*:*:*
- (no CPE)range: 01-00 through 03-10
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.