Lucene search
CVE-2013-6983
SQL injection vuln. in Cisco Unified Presence Server web interface allows remote authenticated users execute arbitrary SQL commands via crafted UR
Show more
| Reporter | Title | Published | Views | Family All 5 |
|---|---|---|---|---|
 | Sql injection | 31 Dec 201315:16 | – | prion |
 | CVE-2013-6983 | 31 Dec 201311:00 | – | cvelist |
 | CVE-2013-6983 | 31 Dec 201315:16 | – | nvd |
 | Cisco Unified Presence Server Web接口SQL注入漏洞 | 2 Jan 201400:00 | – | seebug |
 | Cisco Unified Presence Server SQL Injection Vulnerability | 3 Jan 201421:50 | – | cisco |
| Source | Link |
|---|---|
| secunia | www.secunia.com/advisories/56273 |
| exchange | www.exchange.xforce.ibmcloud.com/vulnerabilities/90011 |
| tools | www.tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6983 |
| securitytracker | www.securitytracker.com/id/1029547 |
| osvdb | www.osvdb.org/101514 |
| securityfocus | www.securityfocus.com/bid/64551 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| sql_command | path | /cisco/unified/presence | SQL injection vulnerability in the web interface allows remote authenticated users to execute arbitrary SQL commands via a crafted URL. | CWE-89 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo31 Dec 2013 15:16Current
8.1High risk
Vulners AI Score8.1
CVSS26.5
EPSS0.00327