CVE-2015-5447

Name of the Vulnerable Software and Affected Versions HP StoreOnce Backup system software versions prior to 3.13.1

Description The issue is related to a cross-site scripting (XSS) vulnerability that allows remote authenticated users to inject arbitrary web script or HTML. This is due to a lack of protection measures for the web page structure, which can be exploited by a remote attacker to inject malicious code.

Recommendations For HP StoreOnce Backup system software versions prior to 3.13.1, update to version 3.13.1 or later to resolve the issue.