Lucene search
K

102 matches found

Cisco
Cisco
added 2018/03/28 4:0 p.m.61 views

Cisco IOS XE Software Web UI Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based user interface web UI of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web UI of the affected software. The vulnerabilities are due to insufficient input validation...

6.1CVSS6.3AI score
Exploits0References1
Prion
Prion
added 2018/02/22 12:29 a.m.19 views

Cross site scripting

A vulnerability in the web-based management interface of the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the interface of an affected system. The vulnerability is due to...

4.3CVSS6AI score0.00885EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2018/02/22 12:0 a.m.12 views

CVE-2018-0145

A vulnerability in the web-based management interface of the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the interface of an affected system. The vulnerability is due to...

5.9AI score0.00885EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2018/02/22 12:0 a.m.9 views

CVE-2018-0200

A vulnerability in the web-based interface of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the web-based interface of an affected product. The vulnerability is due to insufficient validation of...

6AI score0.01244EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/02/08 7:0 a.m.17 views

CVE-2018-0129

A vulnerability in the web-based management interface of Cisco Data Center Analytics Framework could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is du...

6AI score0.00885EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2018/02/08 7:0 a.m.10 views

CVE-2018-0128

A vulnerability in the web-based management interface of Cisco Data Center Analytics Framework could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is due t...

5.8AI score0.00885EPSS
Exploits0References2
CVE
CVE
added 2017/11/30 9:0 a.m.70 views

CVE-2017-12366

Cisco WebEx Meeting Center is affected by CVE-2017-12366 through insufficient input validation of parameters sent to the web server, enabling an unauthenticated, remote attacker to perform cross-site scripting (XSS). Exploitation requires convincing a user to follow a malicious link or intercepti...

6.1CVSS6AI score0.0122EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/11/02 4:0 p.m.26 views

CVE-2017-12294

A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the...

5.4AI score0.00891EPSS
Exploits0References3
CVE
CVE
added 2017/11/02 4:0 p.m.54 views

CVE-2017-12294

Cisco WebEx Meetings Server is affected by CVE-2017-12294, a cross-site scripting (XSS) vulnerability caused by insufficient input validation in certain web-server parameters. An authenticated, remote attacker could lure a user to a crafted link or intercept a request to inject malicious script, ...

5.4CVSS5.3AI score0.00891EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2017/10/19 8:29 a.m.14 views

Cross site scripting

A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of an affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the...

4.3CVSS6AI score0.0122EPSS
Exploits0References3
NVD
NVD
added 2017/10/19 8:29 a.m.17 views

CVE-2017-12298

A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of an affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the...

6.1CVSS6.1AI score0.0122EPSS
Exploits0References3
Prion
Prion
added 2017/10/19 8:29 a.m.15 views

Cross site scripting

A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the...

4.3CVSS6.1AI score0.0122EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/10/19 8:0 a.m.15 views

CVE-2017-12296

A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the...

6.1AI score0.0122EPSS
Exploits0References3
Cisco
Cisco
added 2017/10/18 4:0 p.m.67 views

Cisco WebEx Meeting Center Cross-Site Scripting Vulnerability

A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of an affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the...

6.1CVSS6.1AI score0.0122EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/08/07 6:0 a.m.31 views

CVE-2017-6762

A vulnerability in the web-based management interface of Cisco Jabber Guest Server 10.69, 11.00, and 11.01 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of the affected software. The vulnerability ...

6AI score0.01234EPSS
Exploits0References4
Cisco
Cisco
added 2017/07/19 4:0 p.m.43 views

Cisco Web Security Appliance Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Web Security Appliance WSA could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability is due to...

6.4CVSS5.5AI score0.01228EPSS
Exploits0References1
Cisco
Cisco
added 2017/06/21 4:0 p.m.41 views

Cisco Prime Infrastructure and Evolved Programmable Network Manager DOM Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Evolved Programmable Network Manager EPNM could allow an unauthenticated, remote attacker to conduct a Document Object Model DOM based environment or client-side cross-site scripting XSS attack against a us...

4.7CVSS6AI score0.0128EPSS
Exploits2References1
Cisco
Cisco
added 2017/06/21 4:0 p.m.44 views

Cisco Prime Infrastructure Web Framework Code Cross-Site Scripting Vulnerabilities

A vulnerability in the web framework code of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface of an affected system. The vulnerability is due to insufficient input validation of some...

4.7CVSS6.1AI score0.0128EPSS
Exploits0References1
Cisco
Cisco
added 2017/06/21 4:0 p.m.38 views

Cisco SocialMiner Cross-Site Scripting Vulnerability

A vulnerability in the web framework of Cisco SocialMiner could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface of an affected system. The vulnerability is due to insufficient input validation. An attacker could exploit th...

6.1CVSS6.1AI score0.0128EPSS
Exploits0References1
Cisco
Cisco
added 2017/06/07 4:0 p.m.39 views

Cisco Email Security and Content Security Management Appliance Message Tracking Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Email Security Appliance ESA and Cisco Content Security Management Appliance SMA could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an...

6.1CVSS6.1AI score0.01242EPSS
Exploits0References1
Rows per page
Query Builder