The outlookpa component in Cisco WebEx Meetings Server does not properly validate API input, which allows remote attackers to modify a meeting's invite list via a crafted URL, aka Bug ID CSCuj40254.
https://exchange.xforce.ibmcloud.com/vulnerabilities/100571
http://www.securityfocus.com/bid/71982
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8036