36 matches found
EUVD-2020-3912
Malware in sbrugna...
EUVD-2020-3911
Malware in sbrugna...
EUVD-2019-7080
Malware in sbrugna...
EUVD-2020-5727
Malware in sbrugna...
CVE-2020-11561
In NCH Express Invoice 7.25, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as the "Add New Item" screen...
NCH Express Invoice 7.25 Cleartext Password
Exploit Title: NCH Express Invoice - Clear Text Password Storage and Account Takeover Google Dork:: intitle:ExpressInvoice - Login Date: 07/Apr/2020 Exploit Author: Tejas Nitin Pingulkar https://cvewalkthrough.com/ Vendor Homepage: https://www.nchsoftware.com/ Software Link:...
NCH Express Invoice - Clear Text Password Storage and Account Takeover
Exploit Title: NCH Express Invoice - Clear Text Password Storage and Account Takeover Google Dork:: intitle:ExpressInvoice - Login Date: 07/Apr/2020 Exploit Author: Tejas Nitin Pingulkar https://cvewalkthrough.com/ Vendor Homepage: https://www.nchsoftware.com/ Software Link:...
NCH Express Invoice Cross-Site Scripting Vulnerability
NCH Express Invoice is invoice software that allows you to create print-ready invoices that can be emailed or faxed to your customers for faster payment. A reflected cross-site scripting vulnerability exists in the Quotes List module in NCH Express Invoice 8.06-8.24. No detailed vulnerability...
CVE-2020-13476
NCH Express Invoice 8.06 to 8.24 is vulnerable to Reflected XSS in the Quotes List module...
CVE-2020-13476
NCH Express Invoice 8.06 to 8.24 is vulnerable to Reflected XSS in the Quotes List module...
Cross site scripting
NCH Express Invoice 8.06 to 8.24 is vulnerable to Reflected XSS in the Quotes List module...
CVE-2020-13476
The CVE-2020-13476 entry describes a Reflected XSS in the Quotes List module of NCH Express Invoice versions 8.06–8.24. Affected software is the NCH Express Invoice product (Invoice software). According to the NVD entry, the vulnerability is network-accessible with MEDIUM overall risk (CVSS v3.1 ...
CVE-2020-13476
NCH Express Invoice 8.06 to 8.24 is vulnerable to Reflected XSS in the Quotes List module...
NCH Express Invoice 跨站脚本漏洞
NCH Express Invoice is invoice software that allows you to create print-ready invoices that can be emailed or faxed to your customers for faster payment. A reflected cross-site scripting vulnerability exists in the Quotes List module in NCH Express Invoice 8.06-8.24. No detailed vulnerability...
NCH Software Express Invoice Elevation of Privilege Vulnerability
NCH Software Express Invoice is an inventory system from NCH Software Australia. The system is mainly used for invoice management, etc. A security vulnerability exists in NCH Software Express Invoice version 7.25. The vulnerability can be exploited to gain access to elevated privileges with the...
Unspecified Vulnerability in NCH Software Express Invoice
NCH Software Express Invoice is an inventory system from NCH Software Australia. The system is mainly used for invoice management, etc. A security vulnerability exists in NCH Software Express Invoice version 7.25, which stems from the program storing passwords in plaintext form. This vulnerabilit...
CVE-2020-11560
NCH Express Invoice 7.25 allows local users to discover the cleartext password by reading the configuration file...
Design/Logic Flaw
NCH Express Invoice 7.25 allows local users to discover the cleartext password by reading the configuration file...
CVE-2020-11561
In NCH Express Invoice 7.25, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as the "Add New Item" screen...
CVE-2020-11561
In NCH Express Invoice 7.25, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as the "Add New Item" screen...