2 matches found
Cisco Finesse Appliance Cross-Site Scripting Vulnerability (Cisco-SA-20150501-CVE-2015-0714)
According to its self-reported version, the Cisco Finesse appliance is affected by a cross-site scripting XSS vulnerability exists due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a user to click a...
CVE-2015-0714
CVE-2015-0714 affects Cisco Finesse Server versions 10.0(1), 10.5(1), 10.6(1), and 11.0(1). The vulnerability is a cross-site scripting (XSS) flaw caused by improper validation of user-supplied input, allowing remote attackers to inject arbitrary script or HTML via unspecified parameters. Impacte...