Octech Oempro Cross-Site Scripting Vulnerability (CNVD-2020-25974)

Octech Oempro is a suite of email marketing software from Octech USA. A cross-site scripting vulnerability exists in the 'CampaignName' parameter of the Campaign.Create command in Octech Oempro versions 4.7 through 4.11. The vulnerability stems from a lack of proper validation of client-side data...

CVE-2020-9460

Octech Oempro 4.7 through 4.11 allow XSS by an authenticated user. The parameter CampaignName in Campaign.Create is vulnerable...