CVE-2014-3340
Cisco's advisory for CVE-2014-3340 confirms a directory-traversal flaw in the Cisco WebEx MeetMeNow Server PHP component. An authenticated, remote attacker could read arbitrary files readable by the Apache user due to improper input sanitization in a PHP file. Impact is limited to file disclosure...