Cisco Meeting Server Cross-Site Scripting (XSS) Vulnerability (CSCva19922)

Cisco Meeting Server Cross-Site Scripting (XSS) Vulnerability (CSCva19922)

CVE-2016-1451 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Meeting Server (formerly Acano Conferencing Server) 1.7 through 1.9 allows remote attackers to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCva19922.

Learn more about our Cis Benchmark Audit For Cisco.