Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified MeetingPlace Web Conferencing (MP) 5.3.235.0 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) Success Template (STPL) and (2) Failure Template (FTPL) parameters, which are not properly handled in an error message.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-08-09T21:00:00
Updated: 2024-08-07T14:53:54.236Z
Reserved: 2007-08-09T00:00:00
Link: CVE-2007-4284
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-08-09T21:17:00.000
Modified: 2018-10-15T21:34:17.243
Link: CVE-2007-4284
Redhat
No data.