2 matches found
CVE-2014-3315
Cross-site scripting XSS vulnerability in viewfilecontents.do in the Dialed Number Analyzer DNA component in Cisco Unified Communications Manager allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCup76308...
CVE-2014-3315
Cisco Unified Communications Manager’s DNA cross-site scripting vulnerability (CVE-2014-3315) affects the viewfilecontents.do page in the DNA component. The root cause is insufficient input validation of a parameter, allowing an unauthenticated, remote attacker to inject arbitrary web script or H...