5 matches found
Cisco Registered Envelope Service Cross-Site Scripting Vulnerability (CNVD-2018-16180)
Cisco Registered Envelope Service is a set of mail service solutions from Cisco USA. The product includes read receipts for mail, mail recycling, mail forwarding and reply functions, and provides smartphone support. A cross-site scripting vulnerability exists in the web-based management interface...
CVE-2018-0367
A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of the affected service. The vulnerability is due to...
Cisco Registered Envelope Service Cross-Site Scripting Vulnerability (CNVD-2018-06453)
Cisco Registered Envelope Service cloud based is a cloud-based version of a suite of mail service solutions from the American company Cisco Cisco. The product includes mail read receipts, mail recycling, mail forwarding and reply functions, and provides smartphone support. A cross-site scripting...
Open redirect
A vulnerability in the web interface of the Cisco Registered Envelope Service could allow an unauthenticated, remote attacker to redirect a user to a undesired web page, aka an Open Redirect. This vulnerability affects the Cisco Registered Envelope cloud-based service. More Information: CSCvc6012...
Cisco Registered Envelope Service Open Redirect Vulnerability
Cisco Registered Envelope Service is a Cisco Registered Envelope Service CRES to help companies protect their e-mail communications. Cisco Registered Envelope Service has an open redirection vulnerability because it does not properly filter user-supplied input. An attacker could exploit this...