Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified meetingplace vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5581
Multiple cross-site scripting (XSS) vulnerabilities in mpweb/scripts/mpx.dll in Cisco Unified MeetingPlace 5.4 and previous versions and 6.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) FirstName and (2) LastName parameters.
Cisco Unified Meetingplace 5.2
Cisco Unified Meetingplace 5.0
Cisco Unified Meetingplace
Cisco Unified Meetingplace 5.3
Cisco Unified Meetingplace 5
Cisco Unified Meetingplace 4.3.0.246.5
Cisco Unified Meetingplace 6.0
Cisco Unified Meetingplace 4.3.0.246
NA
CVE-2013-1128
Multiple cross-site request forgery (CSRF) vulnerabilities in the server in Cisco Unified MeetingPlace prior to 7.1(2.2000) allow remote malicious users to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCuc64903. NOTE: some of these details are...
Cisco Unified Meetingplace 5.4
Cisco Unified Meetingplace 6.1
Cisco Unified Meetingplace
Cisco Unified Meetingplace 6.0
Cisco Unified Meetingplace 7.0
Cisco Unified Meetingplace 7.0.2
Cisco Unified Meetingplace 7.0.1
Cisco Unified Meetingplace 7.0.3
NA
CVE-2015-4262
The password-change feature in Cisco Unified MeetingPlace Web Conferencing prior to 8.5(5) MR3 and 8.6 prior to 8.6(2) does not check the session ID or require entry of the current password, which allows remote malicious users to reset arbitrary passwords via a crafted HTTP reque...
Cisco Unified Meetingplace Web Conferencing 6.0.417.0
Cisco Unified Meetingplace Web Conferencing 6.0 Base
Cisco Unified Meetingplace Web Conferencing 8.5\\(3\\)
Cisco Unified Meetingplace Web Conferencing 7.0\\(2\\) Sr1
Cisco Unified Meetingplace Web Conferencing 7.0\\(2\\)
Cisco Unified Meetingplace Web Conferencing 8.5\\(1\\)
Cisco Unified Meetingplace Web Conferencing 8.0\\(1\\)
Cisco Unified Meetingplace Web Conferencing 8.5\\(2\\) Sr2
Cisco Unified Meetingplace Web Conferencing 8.0\\(2\\)
Cisco Unified Meetingplace Web Conferencing 8.0\\(1\\) Sr1
Cisco Unified Meetingplace Web Conferencing 8.5\\(4\\)
Cisco Unified Meetingplace Web Conferencing 7.0\\(1\\)
Cisco Unified Meetingplace Web Conferencing 7.1\\(1\\)
Cisco Unified Meetingplace Web Conferencing 7.1\\(2\\)
Cisco Unified Meetingplace Web Conferencing 7.0\\(3\\)
Cisco Unified Meetingplace Web Conferencing 8.5\\(2\\) Sr1
Cisco Unified Meetingplace Web Conferencing 8.5\\(2\\)
NA
CVE-2011-4232
The web server in Cisco Unified MeetingPlace 6.1 and 8.5 produces different responses for directory queries depending on whether the directory exists, which allows remote malicious users to enumerate directory names via a series of queries, aka Bug ID CSCtt94070.
Cisco Unified Meetingplace 8.5
Cisco Unified Meetingplace 6.1
NA
CVE-2009-0743
Cross-site scripting (XSS) vulnerability in the edit account page in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 prior to 6.0(517.0) (aka 6.0 MR4) and 7.0 prior to 7.0(2) (aka 7.0 MR1) allows remote authenticated users to inject arbitrary web script or HTML ...
Cisco Unified Meetingplace 6.0
Cisco Unified Meetingplace 7.0
NA
CVE-2012-5416
Buffer overflow in Cisco Unified MeetingPlace Web Conferencing prior to 7.1MR1 Patch 1, 8.0 prior to 8.0MR1 Patch 1, and 8.5 prior to 8.5MR3 allows remote malicious users to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua6634...
Cisco Unified Meetingplace 7.1
Cisco Unified Meetingplace
Cisco Unified Meetingplace 8.0
Cisco Unified Meetingplace 8.5
Cisco Unified Meetingplace 7.0.2
Cisco Unified Meetingplace 7.0.3
Cisco Unified Meetingplace 8.5.3
Cisco Unified Meetingplace 8.5.4
Cisco Unified Meetingplace 7.0.1
Cisco Unified Meetingplace 8.5.1
Cisco Unified Meetingplace 8.5.2
Cisco Unified Meetingplace 7.0
NA
CVE-2013-1123
Multiple cross-site scripting (XSS) vulnerabilities in the server in Cisco Unified MeetingPlace 7.0 allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCuc65411 and CSCue18706.
Cisco Unified Meetingplace 7.0
NA
CVE-2013-1168
The web server in Cisco Unified MeetingPlace Application Server 7.x prior to 7.1MR1 Patch 2, 8.0 prior to 8.0MR1 Patch 1, and 8.5 prior to 8.5MR3 Patch 1 does not invalidate a session upon a logout action, which makes it easier for remote malicious users to hijack sessions by lev...
Cisco Unified Meetingplace 7.0.2
Cisco Unified Meetingplace 7.0
Cisco Unified Meetingplace 7.0.3
Cisco Unified Meetingplace 7.1
Cisco Unified Meetingplace 7.0.1
Cisco Unified Meetingplace 8.0
Cisco Unified Meetingplace 8.5
Cisco Unified Meetingplace 8.5.1
Cisco Unified Meetingplace 8.5.2
Cisco Unified Meetingplace 8.5.3
NA
CVE-2015-4214
Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) allows remote authenticated users to discover cleartext passwords by reading HTML source code, aka Bug ID CSCuu33050.
Cisco Unified Meetingplace 8.6\\(1.2\\)
Cisco Unified Meetingplace 8.6\\(1.9\\)
NA
CVE-2015-0762
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) for Microsoft Outlook allows remote malicious users to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCuu51400.
Cisco Unified Meetingplace 8.6\\(1.9\\)
Cisco Unified Meetingplace 8.6\\(1.2\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »