The vulnerability of the Cisco Unified Communications Manager system allows a perpetrator to execute arbitrary SQL commands.
The vulnerability of the Cisco Unified Communications Manager IP telephony management system is related to the lack of protection for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands using a specially crafted URL...