Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified MeetingPlace Web Conferencing (MP) 5.3.235.0 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) Success Template (STPL) and (2) Failure Template (FTPL) parameters, which are not properly handled in an error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Unified MeetingPlace多个跨站脚本漏洞
Vulnerability Description
Cisco Unified MeetingPlace是美国思科(Cisco)公司的一套多媒体会议解决方案。该方案提供了将语音、视频和Web会议集成在一起的用户环境。 MeetingPlace在处理用户请求时存在跨站脚本执行漏洞,远程攻击者可能利用此漏洞在用户的浏览器中执行恶意代码。 MeetingPlace中的成功模板(STPL)和失败模板(FTPL)参数用于指定用户请求的返回模板。如果MeetingPlace服务器接收到了无效的STPL或FTPL参数输入的话,就可能向用户返回HTML错误模板页面,导致在
CVSS Information
N/A
Vulnerability Type
N/A