2 matches found
Cisco Unified Communications Manager Multiple Reflected XSS
According to its self-reported version, the remote Cisco Unified Communications Manager CUCM device is affected by multiple reflected cross-site scripting vulnerabilities due to insufficient input validation of certain parameters passed via HTTP GET or POST methods. %NASLMINLEVEL 70300 C Tenable...
CVE-2014-3373
Cisco Unified Communications Manager (CUCM) Server’s CCM Dialed Number Analyzer interface is affected by multiple XSS vulnerabilities due to insufficient input validation of HTTP GET/POST parameters. Exploitation could allow remote attackers to inject arbitrary web script or HTML. The issue, trac...