Improper input validation in Cisco Webex_social
CVE-2013-1245
The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows remote authenticated users to bypass intend…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.001 (33.1th percentile) — read the EPSS interpretation.
Affected products
- Cisco Webex_social
- N/a — versions n/a
Weakness classification (CWE)
References
- 20130514 WebEx Social Client-Side Restriction Bypass Attribute Change Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)