Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse Server 10.0(1), 10.5(1), 10.6(1), and 11.0(1) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCut53595.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/viewAlert.x?alertId=38607 | Vendor Advisory |
http://www.securitytracker.com/id/1032222 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-05-02 07:59
Updated : 2015-09-10 09:09
NVD link : CVE-2015-0714
Mitre link : CVE-2015-0714
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
cisco
- finesse