Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.Referenceshttp://packetstormsecurity.com/files/127321/EMC-Documentum-eRoom-Stored-Cross-Site-Scripting.htmlhttp://www.securitytracker.com/id/1030493http://secunia.com/advisories/59419http://packetstormsecurity.com/files/127309/EMC-Documentum-eRoom-Cross-Site-Scripting.htmlhttp://seclists.org/fulldisclosure/2014/Jul/0http://archives.neohapsis.com/archives/bugtraq/2014-06/0176.htmlhttp://www.securityfocus.com/archive/1/532608/100/0/threaded
