4 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the web framework in Cisco Prime Security Manager aka PRSM 9.2.1-2 and earlier allow remote attackers to inject arbitrary web script or HTML via a 1 Access Policies or 2 Device Summary Dashboard parameter, aka Bug ID CSCuq80661...
CVE-2014-3364
Multiple cross-site scripting XSS vulnerabilities in the web framework in Cisco Prime Security Manager aka PRSM 9.2.1-2 and earlier allow remote attackers to inject arbitrary web script or HTML via a 1 Access Policies or 2 Device Summary Dashboard parameter, aka Bug ID CSCuq80661...
CVE-2014-3364
Cisco Prime Security Manager (PRSM) web framework contains XSS vulnerabilities (CVE-2014-3364) in versions 9.2.1-2 and earlier. The underlying issue is insufficient input validation on parameters in the Access Policies and Device Summary Dashboard pages, enabling remote attackers to inject arbitr...
Cisco Prime Security Manager Cross-Site Scripting Vulnerability
A vulnerability in the web framework of Cisco Prime Security Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface on the affected system. The vulnerability is due to insufficient input validation of several...