Cross-site scripting (XSS) vulnerability in the edit account page in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote authenticated users to inject arbitrary web script or HTML via the E-mail Address field.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-02-27 09:30
Updated : 2017-08-16 18:30
NVD link : CVE-2009-0743
Mitre link : CVE-2009-0743
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
cisco
- unified_meetingplace