2 matches found
Cross site scripting
A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of the affected service. The vulnerability is due to...
CVE-2018-0367
The CVE-2018-0367 issue affects the Cisco Registered Envelope Service web-based management interface. Affected component: web-based management interface; vulnerability arises from insufficient validation of user-supplied input, enabling an authenticated, remote attacker to perform cross-site scri...