CVE-2018-0406

Cisco Web Security Appliance (WSA) web-based management interface suffers a reflected/DOM-based XSS due to insufficient input validation. An unauthenticated, remote attacker could lure a user into clicking a crafted link, enabling arbitrary script execution in the interface context or leakage of ...