CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2013-6961
https://notcve.org/view.php?id=CVE-2013-6961
Cross-site scripting (XSS) vulnerability in the Collaboration Partner Access Console (CPAC) in Cisco WebEx Meeting Center allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCul36237. Vulnerabilidad de XSS en Collaboration Partner Access Console (CPAC) de Cisco WebEx Meeting Center permite a atacantes remotos inyectar script web o HTML arbitrario a través de una URL manipulada, también conocido como Bug ID CSCul36237. • http://osvdb.org/100905 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6961 http://www.securityfocus.com/bid/64288 http://www.securitytracker.com/id/1029494 https://exchange.xforce.ibmcloud.com/vulnerabilities/89696 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2013-6973
https://notcve.org/view.php?id=CVE-2013-6973
Cisco WebEx Training Center allows remote attackers to discover registration IDs via a crafted URL, aka Bug ID CSCul57121. Cisco WebEx Training Center permite a atacantes remotos descubrir IDs de registro a través de URL manipuladas, también conocido como Bug ID CSCul57121. • http://osvdb.org/100915 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6973 http://tools.cisco.com/security/center/viewAlert.x?alertId=32144 http://www.securityfocus.com/bid/64286 http://www.securitytracker.com/id/1029492 https://exchange.xforce.ibmcloud.com/vulnerabilities/89651 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2013-6971
https://notcve.org/view.php?id=CVE-2013-6971
Open redirect vulnerability in Cisco WebEx Training Center allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCul57140. Vulnerabilidad de redirección abierta en Cisco WebEx Training Center permite a atacantes remotos redirigir a usuarios hacia sitios web arbitrarios o llevar a cabo ataques de phishing a través de vectores no especificados, también conocido como Bug ID CSCul57140. • http://osvdb.org/100910 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6971 http://tools.cisco.com/security/center/viewAlert.x?alertId=32146 http://www.securitytracker.com/id/1029492 https://exchange.xforce.ibmcloud.com/vulnerabilities/89653 • CWE-20: Improper Input Validation •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-6709
https://notcve.org/view.php?id=CVE-2013-6709
The registration component in Cisco WebEx Training Center provides the training-session URL before payment is completed, which allows remote attackers to bypass intended access restrictions and join an audio conference by entering credential fields from this URL, aka Bug ID CSCul57111. El componente de registro en Cisco WebEx Training Center proporciona la URL de capacitación de sesión antes de que se complete el pago, que permite a atacantes remotos evitar las restricciones de acceso previstos y unirse a una conferencia de audio mediante la introducción de campos de credenciales de esta URL, también conocido como Bug ID CSCul57111. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6709 http://tools.cisco.com/security/center/viewAlert.x?alertId=32153 http://www.securitytracker.com/id/1029492 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-6968
https://notcve.org/view.php?id=CVE-2013-6968
Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote attackers to enumerate attendees via a series of requests, aka Bug ID CSCul36003. Cisco WebEx Training Center proporciona diferentes mensajes de error en intentos de registro dependiendo si la dirección de e-mail existe, lo que permite a atacantes remotos enumerar asistentes a través de una serie de peticiones, también conocido como Bug ID CSCul36003. • http://osvdb.org/100913 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6968 http://tools.cisco.com/security/center/viewAlert.x?alertId=32147 http://www.securitytracker.com/id/1029492 https://exchange.xforce.ibmcloud.com/vulnerabilities/89688 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •