2 matches found
Cisco WebEx Sales Center反射型跨站脚本漏洞
Bugtraq ID:64272 CVE ID:CVE-2013-6711 Cisco WebEx是一款网络会议解决方案。 Cisco WebEx Sales Center用于创建新产品的管理页面存在跨站脚本漏洞,允许远程攻击者利用漏洞构建恶意URI,诱使用户解析,当恶意数据被查看时可获取敏感信息或者劫持用户会话。 0 Cisco WebEx Sales Center 厂商补丁: Cisco ----- 用户可参考如下厂商提供的安全公告获得补丁信息:...
CVE-2013-6711
CVE-2013-6711 is a reflected cross-site scripting (XSS) vulnerability affecting the Cisco WebEx Sales Center product-creation admin page. The issue arises from insufficient input validation on the page used to create new products, allowing remote attackers to craft a URL that injects arbitrary we...