Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unity Express before 8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCud87527.Referenceshttp://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1114
