CVE-2008-4542 Information

Feb 14, 2021 cve

Description

Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162 5.x before 5.0(1)ES56 and 7.x before 7.0(2)ES8 allows remote authenticated administrators to inject arbitrary web script or HTML by entering it in the database (aka data store).

Reference

http://secunia.com/advisories/32207 http://securitytracker.com/id?1021012 http://www.cisco.com/en/US/products/products_security_response09186a0080a0d861.html http://www.securityfocus.com/bid/31642 http://www.voipshield.com/research-details.php?id=127 http://www.vupen.com/english/advisories/2008/2771 https://exchange.xforce.ibmcloud.com/vulnerabilities/45744

Share on: