CVE-2014-3266
Cisco Security Manager 4.6 and earlier versions are affected by a cross-site scripting (XSS) vulnerability in the web framework due to insufficient input validation of a parameter, allowing remote attackers to inject arbitrary web script or HTML. Exploitation details are not publicly documented i...