2 matches found
CVE-2013-1171
Cisco CG-NMS contains multiple XSS vulnerabilities in the element-list component that could allow an unauthenticated, remote attacker to inject arbitrary web script or HTML via unspecified vectors. The issue is documented under Cisco Security Advisory Cisco-SA-20130401-CVE-2013-1171 and reference...
CVE-2013-1163
CVE-2013-1163 records multiple SQL injection vulnerabilities in the Cisco Connected Grid Network Management System (CG-NMS) device-management implementation. The issues allow remote attackers to execute arbitrary SQL commands via unspecified vectors. This is tied to Bug IDs CSCue14553 and CSCue38...