Radvision's Scopia provides a solution for voice and video collaborative communications. If the web-based interface is exposed to an XSS attack, the index.jsp page does not check the user's input and it is possible to inject arbitrary code into the page parameters. It's also possible to steal user's cookie or other data by sending a maliciously crafted URL to authenticated user.

-</p>

Make your website safer. Use external penetration testing (http://www.beyondsecurity.com/penetration-testing.html) service. First report ready in one hour!</p>

**Hidden Content: Check the thread to see hidden data.**