Cross site scripting

Cross-site scripting XSS vulnerability in screens/base/webauthcustom.html on Cisco Wireless LAN Controller WLC devices with software 7.2.110.0 allows remote authenticated users to inject arbitrary web script or HTML via the headline parameter, aka Bug ID CSCud65187, a different vulnerability than...

CVE-2012-5992

CVE-2012-5992 affects Cisco Wireless LAN Controller (WLC) devices running software 7.2.110.0. Concrete details from connected documents describe multiple CSRF vulnerabilities that allow an attacker to hijack administrator authentication for requests such as adding administrative accounts (via scr...

CVE-2012-5991

CVE-2012-5991 affects Cisco Wireless LAN Controller 7.2.110.0. The issue arises from insufficient validation of user-supplied input to the WLC web interface (web_auth_custom.html), enabling remote authenticated users to cause a denial of service (device reload) via a crafted buttonClicked value i...

Cisco Wireless Lan Controller 7.2.110.0 Multiple Vulnerabilities

Exploit for hardware platform in category dos / poc Cisco WLC CSRF, DoS, and Persistent XSS Vulnerabilities Exploit Title: u email protected? - Cisco WLC CSRF, DoS, and Persistent XSS Vulnerabilities Date: Discovered and reported November 2012 Author: Jacob Holcomb/Gimppy042 - Security Analyst @...

Cisco Wireless Lan Controller 7.2.110.0 - Multiple Vulnerabilities

Cisco WLC CSRF, DoS, and Persistent XSS Vulnerabilities Exploit Title: u M@d? - Cisco WLC CSRF, DoS, and Persistent XSS Vulnerabilities Date: Discovered and reported November 2012 Author: Jacob Holcomb/Gimppy042 - Security Analyst @ Independent Security Evaluators Software: Cisco Wireless Lan...