CVE-2013-3440
Cisco Unified Operations Manager’s administrative web interface contains multiple XSS vulnerabilities (CVE-2013-3440) due to improper input validation and weak cookie protections. An unauthenticated, remote attacker could lure a user to a crafted URL to execute arbitrary script or hijack sessions...