Hp Business Availability Center vulnerabilities

CVE-2012-3255 [MEDIUM] CWE-79 CVE-2012-3255: Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.07 allows remote Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.07 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2012-3256 [MEDIUM] CWE-352 CVE-2012-3256: Cross-site request forgery (CSRF) vulnerability in HP Business Availability Center (BAC) 8.07 allows Cross-site request forgery (CSRF) vulnerability in HP Business Availability Center (BAC) 8.07 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVE-2012-3257 [MEDIUM] CVE-2012-3257: HP Business Availability Center (BAC) 8.07 allows remote authenticated users to hijack web sessions HP Business Availability Center (BAC) 8.07 allows remote authenticated users to hijack web sessions via unspecified vectors.

CVE-2012-0132 [MEDIUM] CWE-79 CVE-2012-0132: Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 9.01 allows remote Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 9.01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2011-1856 [MEDIUM] CWE-79 CVE-2011-1856: Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.06 and earlier a Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.06 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2011-0274 [MEDIUM] CWE-79 CVE-2011-0274: Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 7.x through 7.55 a Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 7.x through 7.55 and 8.x through 8.05, and Business Service Management (BSM) through 9.01, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.