2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Business Voice Services Manager BVSM pages in the Application Software in Cisco Unified Communications Domain Manager 8 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCur19651, CSCur18555,...
CVE-2014-8010
The Cisco Unified Communications Domain Manager web framework (Application Software, version 8) is affected by CVE-2014-8010. The root cause is insufficient input validation when the user sets certain values in the UI, allowing an authenticated, remote attacker to inject and execute OS commands w...