10 matches found
Cisco Unified Communications Manager Cross-Site Scripting Vulnerability
Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. A cross-site scripting...
CVE-2016-9206
A vulnerability in the ccmadmin page of Cisco Unified Communications Manager CUCM could allow an unauthenticated, remote attacker to conduct reflected cross-site scripting XSS attacks. More Information: CSCvb64641. Known Affected Releases: 11.51.10000.6 11.51.11007.2. Known Fixed Releases:...
CVE-2016-9206
A vulnerability in the ccmadmin page of Cisco Unified Communications Manager CUCM could allow an unauthenticated, remote attacker to conduct reflected cross-site scripting XSS attacks. More Information: CSCvb64641. Known Affected Releases: 11.51.10000.6 11.51.11007.2. Known Fixed Releases:...
Cross site scripting
A vulnerability in the ccmadmin page of Cisco Unified Communications Manager CUCM could allow an unauthenticated, remote attacker to conduct reflected cross-site scripting XSS attacks. More Information: CSCvb64641. Known Affected Releases: 11.51.10000.6 11.51.11007.2. Known Fixed Releases:...
CVE-2016-9206
A vulnerability in the ccmadmin page of Cisco Unified Communications Manager CUCM could allow an unauthenticated, remote attacker to conduct reflected cross-site scripting XSS attacks. More Information: CSCvb64641. Known Affected Releases: 11.51.10000.6 11.51.11007.2. Known Fixed Releases:...
CVE-2016-9206
CVE-2016-9206 affects Cisco Unified Communications Manager (CUCM) through a vulnerability in the ccmadmin page that can allow an unauthenticated, remote attacker to perform reflected cross-site scripting (XSS). The issue arises from improper sanitization/encoding of user-supplied data on the ccma...
CVE-2007-2832
Cross-site scripting XSS vulnerability in the web application firewall in Cisco CallManager before 3.35sr3, 4.1 before 4.13sr5, 4.2 before 4.23sr2, and 4.3 before 4.31sr1 allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to CCMAdmin/serverlist.asp aka the...
Cross site scripting
Cross-site scripting XSS vulnerability in the web application firewall in Cisco CallManager before 3.35sr3, 4.1 before 4.13sr5, 4.2 before 4.23sr2, and 4.3 before 4.31sr1 allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to CCMAdmin/serverlist.asp aka the...
CVE-2007-2832
Cross-site scripting XSS vulnerability in the web application firewall in Cisco CallManager before 3.35sr3, 4.1 before 4.13sr5, 4.2 before 4.23sr2, and 4.3 before 4.31sr1 allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to CCMAdmin/serverlist.asp aka the...
CVE-2007-2832
Cisco CallManager web interface (Cisco CallManager 3.3(5)sr3, 4.1 before 4.1(3)sr5, 4.2 before 4.2(3)sr2, and 4.3 before 4.3(1)sr1) is affected by a cross-site scripting (XSS) vulnerability. The root cause is insufficient sanitization of input to the CCMAdmin/serverlist.asp (the search-form) and ...