EUVD-2019-10225

Malware in sbrugna...

The vulnerability of the “chat feed” component of the automation software for interacting with Cisco SocialMiner customers allows a hacker to inject arbitrary code into the uploaded web page.

The vulnerability of the “chat feed” component of the Cisco SocialMiner automation software exists because measures to protect the structure of the web page have not been taken. Exploiting this vulnerability allows a malicious actor to inject arbitrary code into the web page that is loaded by...

Cisco SocialMiner Cross-Site Scripting Vulnerability (CNVD-2019-02746)

Cisco SocialMiner is the United States Cisco Cisco a social media call center solution. The solution supports social media monitoring and analytics. A cross-site scripting vulnerability exists in the chat feed functionality of Cisco SocialMiner, which stems from the program's failure to adequatel...

CVE-2019-1668

A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting XSS attacks against a user of the web-based user interface of an affected system. This vulnerability is due to insufficient sanitization of user-supplied...

CVE-2019-1668

A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting XSS attacks against a user of the web-based user interface of an affected system. This vulnerability is due to insufficient sanitization of user-supplied...

Cross site scripting

A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting XSS attacks against a user of the web-based user interface of an affected system. This vulnerability is due to insufficient sanitization of user-supplied...

CVE-2019-1668

Cisco SocialMiner's Chat Feed contains XSS vulnerabilities due to insufficient sanitization of user-supplied input in chat feed HTTP requests. An unauthenticated, remote attacker could lure a user to click attacker-controlled content, enabling arbitrary script execution in the context of the affe...

CVE-2019-1668 Cisco SocialMiner Chat Feed Cross-Site Scripting Vulnerability

A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting XSS attacks against a user of the web-based user interface of an affected system. This vulnerability is due to insufficient sanitization of user-supplied...

Cisco SocialMiner Chat Feed Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting XSS attacks against a user of the web-based user interface of an affected system. These vulnerabilities are due to insufficient sanitization of...

PT-2019-1300 · Cisco · Cisco Socialminer

Name of the Vulnerable Software and Affected Versions: Cisco SocialMiner affected versions not specified Description: A vulnerability in the chat feed feature could allow an unauthenticated, remote attacker to perform cross-site scripting XSS attacks against a user of the web-based user interface...