CVE-2015-0729
Cisco Secure Access Control Server Solution Engine (ACSE) 5.5(0.1) is affected by a file-inclusion based XSS vulnerability (Bug ID CSCuu11005). An unauthenticated, remote attacker can inject arbitrary script/HTML via crafted parameters, with exploitation described in Cisco advisory and CVSSv2 bas...