Cisco Webex Meetings Reflected XSS (cisco-sa-webex-mttngs-xss-3VbdxDuF)

According to its self-reported version, Cisco Webex Meetings is prior to 40.6.0. It is, therefore, affected by a Reflected Cross-Site Scripting XSS vulnerability. An unauthenticated, remote attacker can exploit this vulnerability by persuading a user to click a malicious link. A successful exploi...

Cisco Data Center Network Manager XSS (cisco-sa-dcnm-xss-3jkDLsLV)

According to its self-reported version, Cisco Data Center Network Manager is affected by a cross-site scripting XSS vulnerability in the web-based management interface due to a failure to properly validate user-supplied input. An unauthenticated, remote attacker can exploit this, by intercepting ...

Cisco Webex Meetings Cross-Site Scripting Vulnerability

Cisco Webex Meetings is a set of video conferencing solutions from Cisco USA. A cross-site scripting vulnerability exists in the web management interface in Cisco Webex Meetings versions prior to T40.6.0, which stems from the program failing to adequately validate user-submitted input. The...

Cisco Unified Communications Manager Cross-Site Scripting Vulnerability

A vulnerability in the web UI of Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The...

CVE-2020-3460

A vulnerability in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does no...

Cross site scripting

A vulnerability in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does no...

CVE-2020-3460 Cisco Data Center Network Manager Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does no...

CVE-2020-3460 Cisco Data Center Network Manager Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does no...

Atlassian Confluence < 7.4.2 / 7.5.x < 7.5.2 XSS (CONFSERVER-60102)

According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 7.4.2 or 7.5.x prior to 7.5.2. It is, therefore, affected by a cross-site scripting XSS vulnerability in user macro parameters. An authenticated, remote attacker can exploit...

Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting (cisco-sa-cucm-cuc-imp-xss-OWuSYAp)

According to its self-reported version, Cisco Unified Communications Manager IM & Presence Service is affected by a Cross-Site Scripting vulnerabilities. An remote attacker could exploit this vulnerability by inserting malicious data into a specific data field in the web interface. A successful...

Cisco Unified Communications Manager Cross-Site Scripting (cisco-sa-cucm-cuc-imp-xss-OWuSYAp)

According to its self-reported version, Cisco Unified Communications Manager is affected by a Cross-Site Scripting vulnerabilities. An remote attacker could exploit this vulnerability by inserting malicious data into a specific data field in the web interface. A successful exploit could allow the...

Gallery PhotoBlocks < 1.2.0 - Authenticated Cross-Site Scripting (XSS)

The vulnerability is due to insufficient validation of gallery name parameter and image caption parameter. A remote attacker any authenticated low privileged user can exploit this to execute arbitrary script code within the context of the application...

CVE-2020-3349

Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. These vulnerabilities are due to insufficient...

CVE-2020-3348

Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. These vulnerabilities are due to insufficient...

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. These vulnerabilities are due to insufficient...

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. These vulnerabilities are due to insufficient...

CVE-2020-3406 Cisco SD-WAN vManage Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does not...

CVE-2020-3406 Cisco SD-WAN vManage Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does not...

CVE-2020-3348 Cisco Data Center Network Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface on an affected device. These vulnerabilities are due to insufficient...

Cisco Unified Communications Manager Stored Cross-Site Scripting (cisco-sa-cucm-xss-bLZw4Ctq)

According to its self-reported version, Cisco Unified Communications Manager is affected by a Cross-Site Scripting vulnerabilities. An attacker could exploit this vulnerability by inserting malicious data into a specific data field in the web interface. A successful exploit could allow the attack...