CVE-2015-4294

2015-07-31T21:59:17
ID CVE-2015-4294
Type cve
Reporter NVD
Modified 2015-08-21T12:10:00

Description

Cross-site scripting (XSS) vulnerability in Cisco IM and Presence Service before 10.5 MR1 allows remote attackers to inject arbitrary web script or HTML by constructing a crafted URL that leverages incomplete filtering of HTML elements, aka Bug ID CSCut41766.