Back to search
CVE-2007-4284
Published: Aug 9, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified MeetingPlace Web Conferencing (MP) 5.3.235.0 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) Success Template (STPL) and (2) Failure Template (FTPL) parameters, which are not properly handled in an error message.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20070808 XSS vulnerability in Cisco MeetingPlace
mailing-list
x_refsource_FULLDISC
1018537
vdb-entry
x_refsource_SECTRACK
cisco-meetingplace-unspecified-xss(35871)
vdb-entry
x_refsource_XF
26376
third-party-advisory
x_refsource_SECUNIA
20070808 Cisco Unified MeetingPlace XSS Vulnerability
vendor-advisory
x_refsource_CISCO
ADV-2007-2815
vdb-entry
x_refsource_VUPEN
25237
vdb-entry
x_refsource_BID
20070808 RE: XSS vulnerability in Cisco MeetingPlace
mailing-list
x_refsource_BUGTRAQ
20070808 XSS vulnerability in Cisco MeetingPlace
mailing-list
x_refsource_BUGTRAQ
2990
third-party-advisory
x_refsource_SREASON
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now