Improper input validation in Cisco Webex_training_center

CVE-2013-6966

Open redirect vulnerability in Cisco WebEx Training Center allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCul36031.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.005 (67.6th percentile) — read the EPSS interpretation.

Affected products

Cisco Webex_training_center
N/a — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

1029492 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
20131212 Cisco WebEx Training Center Open Redirect Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
cisco-webex-cve20136966-open-redirect(89686) (vdb-entry, x_refsource_XF)
100909 (x_refsource_OSVDB, vdb-entry)