Multiple cross-site scripting (XSS) vulnerabilities in the server in Cisco Unified MeetingPlace 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCuc65411 and CSCue18706.
https://exchange.xforce.ibmcloud.com/vulnerabilities/81986
http://www.securityfocus.com/bid/57885
http://tools.cisco.com/security/center/viewAlert.x?alertId=28228
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1123