Lucene search
+L

120 matches found

NVD
NVD
added 2024/06/13 1:15 p.m.30 views

CVE-2024-36396

Verint - CWE-434: Unrestricted Upload of File with Dangerous Type...

8.8CVSS0.00438EPSS
Exploits0References1
OSV
OSV
added 2024/06/13 1:15 p.m.5 views

CVE-2024-36395

Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...

6.1CVSS5.8AI score0.00254EPSS
Exploits0References1
NVD
NVD
added 2024/06/13 1:15 p.m.29 views

CVE-2024-36395

Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...

6.1CVSS0.00254EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 12:33 p.m.69 views

CVE-2024-36396

Verified details for CVE-2024-36396 show an affected Verint product: Verint Workforce Optimization (WFO). The vulnerability is CWE-434: Unrestricted Upload of File with Dangerous Type, rooted in a code issue in Verint WFO version 15.2.918.262. This could allow uploading dangerous files via the im...

8.8CVSS8.8AI score0.00438EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/13 12:33 p.m.23 views

CVE-2024-36396 Verint - CWE-434: Unrestricted Upload of File with Dangerous Type

Verint - CWE-434: Unrestricted Upload of File with Dangerous Type...

8.8CVSS0.00438EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/13 12:33 p.m.15 views

CVE-2024-36396 Verint - CWE-434: Unrestricted Upload of File with Dangerous Type

Verint - CWE-434: Unrestricted Upload of File with Dangerous Type...

8.8CVSS8.8AI score0.00438EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/13 12:32 p.m.19 views

CVE-2024-36395 Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...

6.1CVSS6.8AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 12:32 p.m.52 views

CVE-2024-36395

Verint Workforce Optimization (WFO) is affected by a cross-site scripting (XSS) vulnerability (CWE-80) caused by improper neutralization of script-related HTML tags in web pages. The CNNVD entry cites Verint WFO version 15.2.918.262 as affected. Root cause: improper HTML/script tag handling. Impa...

6.1CVSS6.2AI score0.00254EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/13 12:32 p.m.32 views

CVE-2024-36395 Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...

6.1CVSS0.00254EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.6 views

Verint Workforce Optimization Code Issue Vulnerability

Verint Systems Verint Workforce Optimization WFO is an employee performance management solution from Verint Systems, USA. The product supports workforce management, call recording, automated quality management, performance management, text and desktop analytics, and more. A code issue vulnerabili...

8.8CVSS7.1AI score0.00438EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/13 12:0 a.m.7 views

PT-2024-26967 · Verint · Verint

Name of the Vulnerable Software and Affected Versions: Verint affected versions not specified Description: The issue concerns an unrestricted upload of a file with a dangerous type, classified as CWE-434. This could potentially allow an attacker to upload malicious files, leading to various...

8.8CVSS7.1AI score0.00438EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/06/13 12:0 a.m.12 views

PT-2024-26966 · Verint · Verint

Name of the Vulnerable Software and Affected Versions: Verint affected versions not specified Description: The issue is related to improper neutralization of script-related HTML tags in a web page, which can lead to basic cross-site scripting XSS. Recommendations: At the moment, there is no...

6.1CVSS6.1AI score0.00254EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.5 views

Verint Workforce Optimization Cross-Site Scripting Vulnerability

Verint Systems Verint Workforce Optimization WFO is an employee performance management solution from Verint Systems, USA. The product supports workforce management, call recording, automated quality management, performance management, text and desktop analytics, and more. A cross-site scripting...

6.1CVSS6.1AI score0.00254EPSS
Exploits0References2
CNVD
CNVD
added 2023/08/06 12:0 a.m.31 views

Verint Engagement Management Cross-Site Scripting Vulnerability

Verint Engagement Management is a unified platform for knowledge management, process management, case management, email management, live chat, co-browsing and more. A cross-site scripting vulnerability exists in Verint Engagement Management version 15.3 Update 2023R2, which stems from the lack of...

5.4CVSS6.3AI score0.00346EPSS
Exploits1References1
NVD
NVD
added 2023/08/02 2:15 p.m.21 views

CVE-2023-33257

Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...

5.4CVSS5.6AI score0.00346EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/08/02 2:15 p.m.4 views

CVE-2023-33257

Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...

5.4CVSS6AI score0.00346EPSS
Exploits1References2
OSV
OSV
added 2023/08/02 2:15 p.m.6 views

CVE-2023-33257

Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...

5.4CVSS5.8AI score0.00346EPSS
Exploits1References1
Prion
Prion
added 2023/08/02 2:15 p.m.19 views

Input validation

Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...

4.9CVSS5.5AI score0.00346EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/02 12:0 a.m.17 views

CVE-2023-33257

Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...

6.9AI score0.00346EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/08/02 12:0 a.m.7 views

PT-2023-24250 · Verint · Verint Engagement Management

Name of the Vulnerable Software and Affected Versions: Verint Engagement Management version 15.3 Update 2023R2 Description: The issue concerns HTML injection via the user data form in the live chat. This allows for potential malicious code injection. Recommendations: For Verint Engagement...

5.4CVSS5.6AI score0.00346EPSS
Exploits1References3
Rows per page
Query Builder