CVE-2018-15426
CVE-2018-15426 affects Cisco Unity Connection’s web-based interface. The issue is a stored XSS vulnerability caused by insufficient validation of user-supplied input, exploitable when a user clicks a crafted link, potentially allowing arbitrary script execution in the interface context or access ...