ZX Security

Cisco CWS – SQL Injection vulnerability

Jason Xie found an authenticated SQL injection vulnerability in the Cisco Cloud Web Security (CWS) web application. If exploited an attacker could extract or modify values stored in the underlying database.

Published on

For further details please see the ZX Security Advisory or the Cisco security advisory.