Unrated severityNVD Advisory· Published Sep 20, 2012· Updated Apr 29, 2026

CVE-2011-5184

Description

Multiple cross-site scripting (XSS) vulnerabilities in HP Network Node Manager i 9.10 allow remote attackers to inject arbitrary web script or HTML via the (1) node parameter to nnm/mibdiscover; (2) nodename parameter to nnm/protected/configurationpoll.jsp, (3) nnm/protected/ping.jsp, (4) nnm/protected/statuspoll.jsp, or (5) nnm/protected/traceroute.jsp; or (6) field parameter to nmm/validate. NOTE: this might be a duplicate of CVE-2011-4155 or CVE-2011-4156.

Affected products

HP/Network Node Manager I
cpe:2.3:a:hp:network_node_manager_i:9.10:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

0a29.blogspot.com/2011/11/0a29-11-1-cross-site-scripting.htmlnvdExploit
osvdb.org/77396nvdExploit
osvdb.org/77397nvdExploit
osvdb.org/77398nvdExploit
osvdb.org/77399nvdExploit
osvdb.org/77400nvdExploit
www.securityfocus.com/bid/50806nvdExploit
secunia.com/advisories/46941nvdVendor Advisory
osvdb.org/77401nvd
www.securityfocus.com/archive/1/520653/100/0/threadednvd
exchange.xforce.ibmcloud.com/vulnerabilities/71527nvd
exchange.xforce.ibmcloud.com/vulnerabilities/71528nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000