CVE-2013-1123Cross-site Scripting in Cisco Unified Meetingplace

CWE-79Cross-site Scripting4 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
0.5%
top 33.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Unified Meetingplace
Timeline
PublishedFeb 15
Latest updateMay 17

Description

Multiple cross-site scripting (XSS) vulnerabilities in the server in Cisco Unified MeetingPlace 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCuc65411 and CSCue18706.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-3cv6-rq95-c6hf: Multiple cross-site scripting (XSS) vulnerabilities in the server in Cisco Unified MeetingPlace 72022-05-17
CVEList
CVE-2013-1123: Multiple cross-site scripting (XSS) vulnerabilities in the server in Cisco Unified MeetingPlace 72013-02-15

📋Vendor Advisories

1
Cisco
Cisco Unified MeetingPlace Server Cross-Site Scripting Vulnerability2013-02-13
CVE-2013-1123 — Cross-site Scripting in Cisco | cvebase