SynopsisA web application on the remote host has a cross-site scripting vulnerability.
DescriptionThe version of Health Monitor (a component of Cisco Prime Network / Wireless Control System) hosted on the remote web server is affected by a reflective cross-site scripting vulnerability. Input to the 'requestUrl' parameter is not properly sanitized. An attacker could exploit this by tricking a user into requesting a specially crafted URL, resulting in arbitrary script code execution.
SolutionThere is no known solution at this time.