Cross-site scripting (XSS) vulnerability in cwhp/device.center.do in the Help servlet in Cisco CiscoWorks Common Services 3.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the device parameter, aka Bug ID CSCto12704.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco ciscoworks common services 2.2 |
||
cisco ciscoworks common services |
||
cisco ciscoworks common services 3.0.6 |
||
cisco ciscoworks common services 3.0.4 |
||
cisco ciscoworks common services 3.2 |
||
cisco ciscoworks common services 1.0 |
||
cisco ciscoworks common services 3.1.1 |
||
cisco ciscoworks common services 3.0 |
||
cisco ciscoworks common services 3.1 |
||
cisco ciscoworks common services 3.0.3 |
||
cisco ciscoworks common services 3.0.5 |
Vulmon