Cisco: >> Webex Meetings Server >> 2.6.0 Security Vulnerabilities
Cisco WebEx Meetings Server 2.6 allows remote attackers to bypass intended access restrictions and obtain sensitive application information via unspecified vectors, aka Bug ID CSCuy92724.
CVSS Score
7.5
EPSS Score
0.002
Published
2016-08-23
Cisco WebEx Meetings Server 2.6 allows remote authenticated users to conduct command-injection attacks via vectors related to an upload's file type, aka Bug ID CSCuy92715.
CVSS Score
7.5
EPSS Score
0.007
Published
2016-07-15
Cross-site scripting (XSS) vulnerability in Cisco WebEx Meetings Server 2.6 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuy92711.
CVSS Score
6.1
EPSS Score
0.003
Published
2016-07-15
Cross-site scripting (XSS) vulnerability in the administrator interface in Cisco WebEx Meetings Server 2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuy83194.
CVSS Score
6.1
EPSS Score
0.005
Published
2016-07-15
SQL injection vulnerability in Cisco WebEx Meetings Server 2.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuy83200.
CVSS Score
8.8
EPSS Score
0.007
Published
2016-07-15
Open redirect vulnerability in Cisco WebEx Meetings Server (CWMS) 2.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuy44695.
CVSS Score
7.4
EPSS Score
0.004
Published
2016-04-28
Page 4