Guest

Preview Tool

Cisco Bug: CSCul35990 - Cisco WebEx Training CTR Training Registration Page Content Injection

Last Modified

Aug 06, 2018

Products (1)

  • Cisco Webex Meetings Online

Known Affected Releases

NotSpecified

Description (partial)

Symptom:
A vulnerability in training registration page of Cisco WebEx Training Center could allow an unauthenticated, remote attacker to insert malicious content 
into various fields of the training registration page.

The vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this vulnerability by inserting malicious content into the 
vulnerable fields on the page.

Conditions:
Default behavior.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.