Multiple cross-site scripting (XSS) vulnerabilities in Cisco Identity Services Engine allow remote attackers to inject arbitrary web script or HTML via input to unspecified web pages, aka Bug IDs CSCur69835 and CSCur69776.
https://tools.cisco.com/security/center/viewAlert.x?alertId=37045
https://exchange.xforce.ibmcloud.com/vulnerabilities/100664
http://www.securitytracker.com/id/1031560
http://www.securityfocus.com/bid/72083
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8022