- EPSS 0.37%
- Veröffentlicht 24.07.2015 14:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
The password-change feature in Cisco Unified MeetingPlace Web Conferencing before 8.5(5) MR3 and 8.6 before 8.6(2) does not check the session ID or require entry of the current password, which allows remote attackers to reset arbitrary passwords via ...
CVE-2013-5494
- EPSS 0.12%
- Veröffentlicht 16.09.2013 13:02:35
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified MeetingPlace Solution, as used in Unified MeetingPlace Web Conferencing and Unified MeetingPlace, allows remote attackers to hijack the authentication of arbitrary ...
- EPSS 0.21%
- Veröffentlicht 24.07.2013 12:01:57
- Zuletzt bearbeitet 11.04.2025 00:51:21
The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, aka Bug ID CSCuh86385.
CVE-2013-3419
- EPSS 0.26%
- Veröffentlicht 11.07.2013 22:55:00
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuh74981.
- EPSS 0.53%
- Veröffentlicht 26.02.2009 16:17:20
- Zuletzt bearbeitet 09.04.2025 00:30:58
Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote attackers to bypass authentication and obtain administrative access via a...