CVE-2015-6255
CVE-2015-6255 affects Cisco Unified Web and E‑Mail Interaction Manager 9.0(2). The vulnerability resides in the web chat interface where insufficient input validation allows a remote attacker to deliver a crafted chat message that injects arbitrary web script or HTML (XSS). The root cause is inpu...