17 matches found
Cisco Unified Email Interaction Manager and Unified Web Interaction Manager Cross-Site Scripting Vulnerabilities
Cisco Unified Email Interaction Manager is a product from Cisco that is used to manage large volumes of customer email submitted to corporate mailboxes or websites. A cross-site scripting vulnerability exists in Cisco Unified Email Interaction Manager and Unified Web Interaction Manager 11.0. Thi...
CVE-2015-6416
Cross-site scripting XSS vulnerability in Cisco Unified Email Interaction Manager and Unified Web Interaction Manager 11.01 allows remote attackers to inject arbitrary web script or HTML a crafted URL, aka Bug ID CSCuw24479...
Cross site scripting
Cross-site scripting XSS vulnerability in Cisco Unified Email Interaction Manager and Unified Web Interaction Manager 11.01 allows remote attackers to inject arbitrary web script or HTML a crafted URL, aka Bug ID CSCuw24479...
CVE-2015-6416
CVE-2015-6416 is a cross-site scripting (XSS) vulnerability in Cisco’s Unified Email Interaction Manager and Unified Web Interaction Manager version 11.0(1). The issue arises from insufficient sanitization of user-supplied input in the web interface, allowing an unauthenticated, remote attacker t...
CVE-2015-6255
Cross-site scripting XSS vulnerability in Cisco Unified Web and E-Mail Interaction Manager 9.02 allows remote attackers to inject arbitrary web script or HTML via a crafted chat message, aka Bug ID CSCuo89051...
CVE-2015-4298
Cisco Unified Web and E-Mail Interaction Manager 9.02 and 11.01 improperly performs authorization, which allows remote authenticated users to read or write to stored data via unspecified vectors, aka Bug ID CSCuo89056...
Authorization
Cisco Unified Web and E-Mail Interaction Manager 9.02 and 11.01 improperly performs authorization, which allows remote authenticated users to read or write to stored data via unspecified vectors, aka Bug ID CSCuo89056...
CVE-2015-4298
Cisco Unified Web and E-Mail Interaction Manager 9.02 and 11.01 improperly performs authorization, which allows remote authenticated users to read or write to stored data via unspecified vectors, aka Bug ID CSCuo89056...
Cisco Unified Web Interaction Manager Web Interface Denial of Service Vulnerability
Cisco Unified Web Interaction Manager is a WEB interaction manager. An input validation vulnerability in Cisco Unified Web Interaction Manager allows remote attackers to conduct denial of service attacks by deleting the default system folder in the message queue via the WEB interface...
Cisco Unified Web Interaction Manager Web Interface Security Restriction Bypass Vulnerability
Cisco Unified Web Interaction Manager is a WEB interaction manager. An input validation vulnerability in Cisco Unified Web Interaction Manager WEBjiekou could be exploited by a remote attacker to submit a special request to view, modify, or delete data stored on the target system...
CVE-2015-0753
SQL injection vulnerability in Cisco Unified Email Interaction Manager EIM and Unified Web Interaction Manager WIM 9.02 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuu30028...
Cisco Unified Web Interaction Manager Cross-Site Scripting Vulnerability
A vulnerability in Cisco Unified Web Interaction Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against the user of the web interface of the affected system. The vulnerability is due to a lack of input sanitization of the Cisco Unified Web...
Cisco Unified Web Interaction Manager Cross-Site Scripting Vulnerability
Cisco Unified Web and E-mail Interaction Manager are both products in Cisco's Customer Collaboration Contact Center.Web Interaction Manager is a product that helps call center agents answer customer questions using websites and text chat or real-time Web collaboration; E-mail Interaction Manager ...
CVE-2015-0655
Cross-site scripting XSS vulnerability in Unified Web Interaction Manager in Cisco Unified Web and E-Mail Interaction Manager allows remote attackers to inject arbitrary web script or HTML via vectors related to a POST request, aka Bug ID CSCus74184...
Cross site scripting
Cross-site scripting XSS vulnerability in Unified Web Interaction Manager in Cisco Unified Web and E-Mail Interaction Manager allows remote attackers to inject arbitrary web script or HTML via vectors related to a POST request, aka Bug ID CSCus74184...
CVE-2015-0655
Cross-site scripting XSS vulnerability in Unified Web Interaction Manager in Cisco Unified Web and E-Mail Interaction Manager allows remote attackers to inject arbitrary web script or HTML via vectors related to a POST request, aka Bug ID CSCus74184...
CVE-2015-0655
CVE-2015-0655 affects Cisco Unified Web and E‑Mail Interaction Manager (Unified Web Interaction Manager). The vulnerability is an XSS due to lack of input sanitization, exploitable by an unauthenticated, remote attacker who entices a user to submit a crafted POST request to the web interface. Imp...