CVE-2014-8018

Multiple cross-site scripting XSS vulnerabilities in Business Voice Services Manager BVSM pages in the Application Software in Cisco Unified Communications Domain Manager 8 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCur19651, CSCur18555,...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Business Voice Services Manager BVSM page in Cisco Unified Communications Domain Manager 9.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCum78536, CSCum78526, CSCum69809, and...

CVE-2014-2104

Cisco Unified Communications Domain Manager BVSM page (in 9.0(.1)) contains multiple XSS flaws due to insufficient input validation of BVSM parameters. Exploitation allows remote attackers to craft malicious links/URIs to inject script or HTML via unspecified parameters, potentially compromising ...

Cisco Unified Communications Domain Manager Cross-Site Scripting Vulnerability

A vulnerability in the web framework of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface on the affected system. The vulnerability is due to insufficient input validation of...