- EPSS 0.37%
- Veröffentlicht 24.07.2015 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The password-change feature in Cisco Unified MeetingPlace Web Conferencing before 8.5(5) MR3 and 8.6 before 8.6(2) does not check the session ID or require entry of the current password, which allows remote attackers to reset arbitrary passwords via ...
CVE-2013-5494
- EPSS 0.12%
- Veröffentlicht 16.09.2013 13:02:35
- Zuletzt bearbeitet 29.04.2026 01:13:23
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified MeetingPlace Solution, as used in Unified MeetingPlace Web Conferencing and Unified MeetingPlace, allows remote attackers to hijack the authentication of arbitrary ...
- EPSS 0.21%
- Veröffentlicht 24.07.2013 12:01:57
- Zuletzt bearbeitet 29.04.2026 01:13:23
The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, aka Bug ID CSCuh86385.
CVE-2013-3419
- EPSS 0.26%
- Veröffentlicht 11.07.2013 22:55:00
- Zuletzt bearbeitet 29.04.2026 01:13:23
Cross-site scripting (XSS) vulnerability in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuh74981.
- EPSS 0.53%
- Veröffentlicht 26.02.2009 16:17:20
- Zuletzt bearbeitet 23.04.2026 00:35:47
Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote attackers to bypass authentication and obtain administrative access via a...