2 matches found
CVE-2019-12707 Multiple Cisco Unified Communications Products Cross-Site Scripting Vulnerability
A vulnerability in the web-based interface of multiple Cisco Unified Communications products could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based interface of the affected software. The vulnerability is due to insufficient...
CVE-2019-12707
CVE-2019-12707 describes an XSS vulnerability in the web-based interfaces of multiple Cisco Unified Communications products due to insufficient validation of user-supplied input. An unauthenticated, remote attacker can entice a user to click a crafted link, potentially executing arbitrary script ...