CVE-2016-1298 in Unified Contact Center Express
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Contact Center Express 10.0(1), 10.5(1), 10.6(1), and 11.0(1) allow remote attackers to inject arbitrary web script or HTML via vectors related to permalinks, aka Bug ID CSCux92033.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Reservation
01/04/2016
Disclosure
01/26/2016
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 80667 | Cisco Unified Contact Center Express Permalink cross site scripting | 79 | Not defined | Not defined | CVE-2016-1298 |