2 matches found
Cisco WebEx Training Center培训注册跨站脚本漏洞
Bugtraq ID:64277 CVE ID:CVE-2013-6963 Cisco WebEx Training Center是一款互动式培训解决方案,可开展电子教学。 Cisco WebEx Training Center培训中心注册页面不正确过滤用户提交的输入,允许远程攻击者利用漏洞构建恶意URI,诱使用户解析,可获取敏感信息或劫持用户会话。 0 Cisco WebEx Training Center 厂商补丁: Cisco ----- 用户可参考如下厂商提供的安全公告获得补丁信息:...
CVE-2013-6963
Cisco WebEx Training Center contains a cross-site scripting (XSS) vulnerability in the registration page (CVE-2013-6963). The issue stems from insufficient validation of user-supplied input, enabling an unauthenticated remote attacker to craft a malicious URL that, when a user follows it, may inj...