CVE-2015-6390
Cisco Unity Connection 9.1(1.10) management interface vulnerable to cross-site scripting (XSS) via crafted URLs. Root cause: insufficient input validation. Impact: partial integrity exposure; no explicit availability impact. Exploitation details: remote attacker could inject arbitrary script in t...