3 matches found
CVE-2016-1471
Cross-site scripting XSS vulnerability in the web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz76232...
CVE-2016-1471
Cross-site scripting XSS vulnerability in the web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz76232...
CVE-2016-1471
CVE-2016-1471 describes a Cross-site Scripting (XSS) vulnerability in the web-based management interface of Cisco Small Business 220 Series Smart Plus Switches (Sx220) with firmware prior to 1.0.1.1. The root cause is insufficient validation of user-supplied input in the web interface, allowing a...