CVE-2007-5582

Cross-site scripting (XSS) vulnerability in the login page in Cisco CiscoWorks Server (CS), possibly 2.6 and earlier, when using CiscoWorks Common Services 3.0.x and 3.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Severity	MEDIUM
CVSS	4.3
CWE	CWE-79
KEV
Published	18 years ago
Modified	3 weeks ago

Related Products

Product	Advisory	Evidence
Cisco Unity Connection	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Unity Bridge	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Unity	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Unified MeetingPlace	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Unified IP IVR	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Unified Customer Voice Portal (CVP)	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Unified Contact Center	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Unified Communications Manager	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Security Agent	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Personal Assistant	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Internet Service Node (ISN)	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Intelligent Contact Manager (ICM)	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco IP Queue Manager	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Emergency Responder	cisco-sa-20071205-csa	Cisco OpenVuln
Cisco Conference Connection	cisco-sa-20071205-csa	Cisco OpenVuln