cisco webex training vulnerabilities and exploits

(subscribe to this query)

5.8

CVSSv2

Open redirect vulnerability in Cisco WebEx Training Center allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCul57140.

Cisco Webex Training Center -

4.3

CVSSv2

Cisco WebEx Training Center allows remote malicious users to discover registration IDs via a crafted URL, aka Bug ID CSCul57121.

Cisco Webex Training Center -

5

CVSSv2

The registration component in Cisco WebEx Training Center provides the training-session URL before payment is completed, which allows remote malicious users to bypass intended access restrictions and join an audio conference by entering credential fields from this URL, aka Bug ID...

Cisco Webex Training Center -

6.8

CVSSv2

Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Training Center allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCul25567.

Cisco Webex Training Center -

4.3

CVSSv2

Cross-site scripting (XSS) vulnerability in the registration component in Cisco WebEx Training Center allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCul36207.

Cisco Webex Training Center -

5

CVSSv2

The registration component in Cisco WebEx Training Center provides the training-session URL before e-mail confirmation is completed, which allows remote malicious users to bypass intended access restrictions and join an audio conference by entering credential fields from this URL...

Cisco Webex Training Center -

5.8

CVSSv2

Open redirect vulnerability in Cisco WebEx Training Center allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCul36031.

Cisco Webex Training Center -

5

CVSSv2

Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote malicious users to enumerate attendees via a series of requests, aka Bug ID CSCul36003.

Cisco Webex Training Center -

5

CVSSv2

Cisco WebEx Training Center allows remote malicious users to discover session numbers, and bypass host approval for audio-conference attendance, by reading HTML source code, aka Bug ID CSCul57126.

Cisco Webex Training Center -

6.8

CVSSv2

Cross-site request forgery (CSRF) vulnerability in testingLibraryAction.do in the Training Center testing library in Cisco WebEx Training Center allows remote malicious users to hijack the authentication of arbitrary users for requests that delete tests, aka Bug ID CSCzu81067.

Cisco Webex Training Center -

Get Started

1 2 3 4 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook