CVE-2013-6974 Information

Description

Cross-site scripting (XSS) vulnerability in the web interface in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter aka Bug ID CSCud89431.

Reference

http://osvdb.org/101894 http://secunia.com/advisories/56353 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6974 http://www.securityfocus.com/bid/64752 http://www.securitytracker.com/id/1029594