CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Cisco: >> Unified Meetingplace >> 5.0 Security Vulnerabilities

CVE-2010-0139

Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.2, and possibly 5 does not properly validate SQL commands, which allows remote attackers to create, modify, or delete data in a database via unspecified vectors, aka Bug ID CSCtc39691.

CVSS Score

9.0

EPSS Score

0.006

Published

2010-01-28

CVE-2007-5581

Multiple cross-site scripting (XSS) vulnerabilities in mpweb/scripts/mpx.dll in Cisco Unified MeetingPlace 5.4 and earlier and 6.0 allow remote attackers to inject arbitrary web script or HTML via the (1) FirstName and (2) LastName parameters.

CVSS Score

4.3

EPSS Score

0.005

Published

2007-11-08

Page 1

Vulnerabilities

Vulnerable Software

Cisco: >> Unified Meetingplace >> 5.0 Security Vulnerabilities

Products

Pricing

Contact Us