2 matches found
CVE-2015-0724
Multiple cross-site scripting XSS vulnerabilities in dncs 7.0.0.12 in Cisco Headend Digital Broadband Delivery System allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in a 1 GET or 2 POST request, aka Bug ID CSCur25604...
CVE-2015-0724
CVE-2015-0724 affects Cisco Headend Digital Broadband Delivery System (dncs 7.0.0.12). The issue is cross-site scripting via HTTP GET/POST parameters due to improper input validation. Impact is that remote attackers can inject arbitrary script/HTML, with potential session-related consequences; CV...