Webex Training Center Security Vulnerabilities and Issues — Webex Training Center CVE List

Lucene search

CiscoWebex Training Center

10 matches found

CVE•added 2013/12/14 10:55 p.m.•44 views

CVE-2013-6963

Cross-site scripting (XSS) vulnerability in the registration component in Cisco WebEx Training Center allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCul36207.

4.3CVSS5.8AI score0.00359EPSS

CVE•added 2013/12/14 10:55 p.m.•35 views

CVE-2013-6968

Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote attackers to enumerate attendees via a series of requests, aka Bug ID CSCul36003.

5CVSS6.8AI score0.00528EPSS

CVE•added 2013/12/14 10:55 p.m.•34 views

CVE-2013-6971

Open redirect vulnerability in Cisco WebEx Training Center allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCul57140.

5.8CVSS6.9AI score0.00528EPSS

CVE•added 2013/12/14 10:55 p.m.•31 views

CVE-2013-6709

The registration component in Cisco WebEx Training Center provides the training-session URL before payment is completed, which allows remote attackers to bypass intended access restrictions and join an audio conference by entering credential fields from this URL, aka Bug ID CSCul57111.

5CVSS6.9AI score0.00267EPSS

CVE•added 2013/12/14 10:55 p.m.•31 views

CVE-2013-6965

The registration component in Cisco WebEx Training Center provides the training-session URL before e-mail confirmation is completed, which allows remote attackers to bypass intended access restrictions and join an audio conference by entering credential fields from this URL, aka Bug ID CSCul36183.

5CVSS6.9AI score0.005EPSS

CVE•added 2013/12/17 4:46 a.m.•30 views

CVE-2013-6966

5.8CVSS6.9AI score0.00528EPSS

CVE•added 2013/12/14 10:55 p.m.•29 views

CVE-2013-6973

Cisco WebEx Training Center allows remote attackers to discover registration IDs via a crafted URL, aka Bug ID CSCul57121.

4.3CVSS6.8AI score0.00928EPSS

CVE•added 2013/12/14 10:55 p.m.•28 views

CVE-2013-6710

Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Training Center allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCul25567.

6.8CVSS7.3AI score0.00128EPSS

CVE•added 2013/12/14 10:55 p.m.•28 views

CVE-2013-6972

Cisco WebEx Training Center allows remote attackers to discover session numbers, and bypass host approval for audio-conference attendance, by reading HTML source code, aka Bug ID CSCul57126.

5CVSS6.9AI score0.00657EPSS

CVE•added 2013/12/14 10:55 p.m.•27 views

CVE-2013-6969

The training-registration page in Cisco WebEx Training Center allows remote attackers to modify unspecified fields via unknown vectors, aka Bug ID CSCul35990.

4.3CVSS6.9AI score0.00347EPSS