CVE-2013-5517
Cisco Unified Communications Domain Manager’s web framework is affected by a SQL injection via a crafted URL. The root cause is failure to validate user-supplied input in SQL queries, allowing an authenticated, remote attacker to execute arbitrary SQL commands and potentially modify or delete dat...