Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV...
6.1CVSS
5.9AI Score
0.002EPSS
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message....
Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username...
5.3CVSS
5.4AI Score
0.001EPSS
Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via...
5.3CVSS
5.2AI Score
0.002EPSS
Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email"...
5.4CVSS
5.7AI Score
0.001EPSS