Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-36396 | 1 Verint | 1 Workforce Optimization | 2024-11-21 | N/A | 8.8 HIGH |
|
Verint - CWE-434: Unrestricted Upload of File with Dangerous Type
|
|||||
| CVE-2024-36395 | 1 Verint | 1 Workforce Optimization | 2024-11-21 | N/A | 6.1 MEDIUM |
|
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
|
|||||
| CVE-2021-41825 | 1 Verint | 1 Workforce Optimization | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter.
|
|||||
| CVE-2021-36450 | 1 Verint | 1 Workforce Optimization | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
|
Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV parameter.
|
|||||
| CVE-2020-23446 | 1 Verint | 1 Workforce Optimization | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via API
|
|||||
| CVE-2020-13480 | 1 Verint | 1 Workforce Optimization | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email" feature.
|
|||||