Cisco : Security Vulnerabilities, CVEs, Published In February 2009 (XSS)
Cross-site scripting (XSS) vulnerability in the edit account page in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote authenticated users to inject arbitrary web script or HTML via the E-mail Address field.
Max CVSS
3.5
EPSS Score
0.12%
Published
2009-02-27
Updated
2017-08-17
Multiple cross-site scripting (XSS) vulnerabilities in the HTTP server in Cisco IOS 12.4(23) allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) level/15/exec/-/ or (2) exec/, a different vulnerability than CVE-2008-3821.
Max CVSS
4.3
EPSS Score
0.18%
Published
2009-02-06
Updated
2018-10-11
Cross-site scripting (XSS) vulnerability in apply.cgi on the Linksys WRT160N allows remote attackers to inject arbitrary web script or HTML via the action parameter in a DHCP_Static operation.
Max CVSS
4.3
EPSS Score
0.35%
Published
2009-02-25
Updated
2017-08-17
3 vulnerabilities found