2 matches found
CVE-2010-0641
Cisco Collaboration Server (CCS) version 5 is affected by CVE-2010-0641, a cross-site scripting (XSS) vulnerability in LoginPage.jhtml that allows an attacker to inject arbitrary script via the dest parameter. Public documents confirm the issue originates in webline/html/admin/wcs/LoginPage.jhtml...
CVE-2010-0642
Cisco Collaboration Server 5 is affected by CVE-2010-0642, a source-code disclosure vulnerability that lets remote attackers read JHTML files by crafting URL-encoded filename extensions (e.g., .jhtml → %2Ejhtml, .jhtml → .jhtm%6C, etc.). The affected components include multiple CCS web interfaces...