CVE-2014-3325 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Customer Voice Portal (CVP) allow remote attackers to inject arbitrary web script or HTML via a crafted parameter aka Bug IDs CSCuh61711 CSCuh61720 CSCuh61723 CSCuh61726 CSCuh61727 CSCuh61731 and CSCuh61733.

Reference

http://secunia.com/advisories/60546 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3325 http://www.securityfocus.com/bid/68691