Cross-Site Scripting Vulnerability in IBM Tivoli Monitoring for Cisco Prime Central
CVE-2013-1157
Currently unrated
Key Information:
- Vendor
- Cisco
- Vendor
- CVE Published:
- 1 May 2013
Summary
The IBM Tivoli Monitoring Java servlet container in Cisco Prime Central for Hosted Collaboration Solution is susceptible to an XSS vulnerability, enabling remote attackers to inject arbitrary web scripts or HTML code. This injection occurs through an unspecified parameter, which may allow attackers to manipulate the site's content or execute unauthorized actions on behalf of users. Proper validation and sanitization of input parameters are required to mitigate such risks.
References
Timeline
Vulnerability Reserved
Vulnerability published