2 matches found
CVE-2013-5541
Cross-site scripting XSS vulnerability in the file-upload interface in Cisco Identity Services Engine ISE allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename, aka Bug ID CSCui67495...
CVE-2013-5541
CVE-2013-5541 concerns Cisco Identity Services Engine (ISE) and its file-upload filename handling. The issue is a cross-site scripting (XSS) vulnerability triggered by crafting a filename uploaded via the ISE web interface. Root cause per Cisco advisory is insufficient validation of uploaded file...