CVE-2013-1123

Multiple cross-site scripting (XSS) vulnerabilities in the server in Cisco Unified MeetingPlace 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCuc65411 and CSCue18706.

Published: Feb 15, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-1123
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
cisco / unified_meetingplace	7.0	7.0.x

http://osvdb.org/90075
http://secunia.com/advisories/52109
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1123
http://tools.cisco.com/security/center/viewAlert.x?alertId=28228
http://www.securityfocus.com/bid/57885
https://exchange.xforce.ibmcloud.com/vulnerabilities/81986

Vulnerability Database

289,784

CVE-2013-1123