Back to search
CVE-2013-5489
Published: Sep 13, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
The gadget implementation in Cisco SocialMiner does not properly restrict the content of GET requests, which allows remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history, aka Bug ID CSCuh74125.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://tools.cisco.com/security/center/viewAlert.x?alertId=30734
x_refsource_CONFIRM
cisco-socialminer-cve20135489-info-disc(86965)
vdb-entry
x_refsource_XF
20130910 Cisco SocialMiner Sensitive Information GET Request Vulnerability
vendor-advisory
x_refsource_CISCO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now