CVE-2013-5563

Cisco CS-MARS - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in Query/NewQueryResult.jsp in Cisco Security Monitoring, Analysis and Response System (CS-MARS) allows remote attackers to inject arbitrary web script or HTML via the isnowLatency parameter, aka Bug ID CSCul16173.

References (2)

[Exploit] http://archives.neohapsis.com/archives/bugtraq/2013-11/0016.html

[Exploit] http://research.smartnetsecurity.net/advisory/-smt-sa-2013-02-cisco-mars-cross-site-scripting-vulnerability

Scores

EPSS 0.0022

EPSS Percentile 45.0%

Details

CWE

CWE-79

Status published

Products (2)

cisco/security_monitoring_analysis_and_response_system

n/a/n/a

Published Nov 06, 2013

Tracked Since Feb 18, 2026