6 matches found
CVE-2011-0960
Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to execute arbitrary SQL commands via 1 the CCMs parameter to iptm/PRTestCreation.do or 2 the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug ID CSCtn61716...
CVE-2011-0959
Multiple cross-site scripting XSS vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to inject arbitrary web script or HTML via 1 the extn parameter to iptm/advancedfind.do, 2 the deviceInstanceName parameter to iptm/ddv.do, the 3 cmd or 4 group parameter t...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to inject arbitrary web script or HTML via 1 the extn parameter to iptm/advancedfind.do, 2 the deviceInstanceName parameter to iptm/ddv.do, the 3 cmd or 4 group parameter t...
Sql injection
Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to execute arbitrary SQL commands via 1 the CCMs parameter to iptm/PRTestCreation.do or 2 the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug ID CSCtn61716...
CVE-2011-0960
Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to execute arbitrary SQL commands via 1 the CCMs parameter to iptm/PRTestCreation.do or 2 the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug ID CSCtn61716...
CVE-2011-0959
Multiple cross-site scripting XSS vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to inject arbitrary web script or HTML via 1 the extn parameter to iptm/advancedfind.do, 2 the deviceInstanceName parameter to iptm/ddv.do, the 3 cmd or 4 group parameter t...