16 matches found
CVE-2019-1680
A vulnerability in Cisco Webex Business Suite could allow an unauthenticated, remote attacker to inject arbitrary text into a user's browser. The vulnerability is due to improper validation of input. An attacker could exploit this vulnerability by convincing a targeted user to view a malicious UR...
CVE-2019-1680
A vulnerability in Cisco Webex Business Suite could allow an unauthenticated, remote attacker to inject arbitrary text into a user's browser. The vulnerability is due to improper validation of input. An attacker could exploit this vulnerability by convincing a targeted user to view a malicious UR...
Cisco Webex Business Suite Cross-Site Scripting Vulnerability
A cross-site scripting vulnerability exists in the MyWebex component of Cisco Webex Business Suite. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML via a specially crafted URL...
CVE-2018-15461
A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...
Cross site scripting
A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...
CVE-2018-15461 Cisco Webex Business Suite Cross-Site Scripting Vulnerability
A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...
CVE-2018-15461 Cisco Webex Business Suite Cross-Site Scripting Vulnerability
A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...
CVE-2018-15461
Cisco Webex Business Suite (MyWebex component) contains a cross-site scripting (XSS) vulnerability due to insufficient input validation. An unauthenticated, remote attacker can lure a user to click a crafted URL, enabling injection of arbitrary web script or HTML. Exploitation relies on social en...
Cisco Webex Business Suite Cross-Site Scripting Vulnerability
A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...
The vulnerability of the recording mechanism in software for Cisco WebEx Business Suite and WebEx Meetings, as well as Cisco WebEx Meetings Server, allows a perpetrator to execute arbitrary code.
The vulnerability of the mechanism for reproducing records in the Advanced Recording Format ARF of Cisco WebEx Business Suite and WebEx Meetings software exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a...
CVE-2018-0104
A vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format ARF files could allow a remote attacker to execute arbitrary code on the system of a targeted user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious A...
CVE-2018-0103
CVE-2018-0103 describes a buffer overflow in Cisco WebEx Network Recording Player when parsing ARF files, permitting arbitrary code execution with local access (per NVD) and potentially remote exploitation via crafted ARF content (per ZDI). Affected: Cisco WebEx Network Recording Player and relat...
Cisco WebEx Business Suite meeting site and Cisco WebEx Meetings site WebEx Recording Format Player denial of service vulnerability
Cisco WebEx Business Suite meeting site and WebEx Meetings site are both videoconferencing solutions from the U.S. company Cisco Cisco.Cisco WebEx Recording Format WRF Player is used in one of the meeting recording player. A denial of service vulnerability exists in the Cisco WebEx WRF Player in...
Remote Code Execution Vulnerability in Multiple Cisco Products (CNVD-2017-35725)
Cisco WebEx Business Suite WBS30 client and so on are the client software of the video conference solution of the United States Cisco Cisco Company.WebEx Recording Format Player WRF and Advanced Recording Format Player ARF are used in it. ARF are used in which the conference recording player. A...
Design/Logic Flaw
WebEx Meeting Center in Cisco WebEx Business Suite does not properly compose URLs for HTTP GET requests, which allows remote attackers to obtain sensitive information by reading 1 web-server access logs, 2 web-server Referer logs, or 3 a browser's history, aka Bug ID CSCul98272...
CVE-2014-0708
WebEx Meeting Center in Cisco WebEx Business Suite does not properly compose URLs for HTTP GET requests, which allows remote attackers to obtain sensitive information by reading 1 web-server access logs, 2 web-server Referer logs, or 3 a browser's history, aka Bug ID CSCul98272...