CVE-2014-8028 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Secure Access Control System (ACS) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters aka Bug ID CSCuq79019.

Reference

http://secunia.com/advisories/62159 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8028 http://www.securityfocus.com/bid/71946 http://www.securitytracker.com/id/1031515 https://exchange.xforce.ibmcloud.com/vulnerabilities/100553