120 matches found
CVE-2024-36396
Verint - CWE-434: Unrestricted Upload of File with Dangerous Type...
CVE-2024-36395
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...
CVE-2024-36395
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...
CVE-2024-36396
Verified details for CVE-2024-36396 show an affected Verint product: Verint Workforce Optimization (WFO). The vulnerability is CWE-434: Unrestricted Upload of File with Dangerous Type, rooted in a code issue in Verint WFO version 15.2.918.262. This could allow uploading dangerous files via the im...
CVE-2024-36396 Verint - CWE-434: Unrestricted Upload of File with Dangerous Type
Verint - CWE-434: Unrestricted Upload of File with Dangerous Type...
CVE-2024-36396 Verint - CWE-434: Unrestricted Upload of File with Dangerous Type
Verint - CWE-434: Unrestricted Upload of File with Dangerous Type...
CVE-2024-36395 Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...
CVE-2024-36395
Verint Workforce Optimization (WFO) is affected by a cross-site scripting (XSS) vulnerability (CWE-80) caused by improper neutralization of script-related HTML tags in web pages. The CNNVD entry cites Verint WFO version 15.2.918.262 as affected. Root cause: improper HTML/script tag handling. Impa...
CVE-2024-36395 Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...
Verint Workforce Optimization Code Issue Vulnerability
Verint Systems Verint Workforce Optimization WFO is an employee performance management solution from Verint Systems, USA. The product supports workforce management, call recording, automated quality management, performance management, text and desktop analytics, and more. A code issue vulnerabili...
PT-2024-26967 · Verint · Verint
Name of the Vulnerable Software and Affected Versions: Verint affected versions not specified Description: The issue concerns an unrestricted upload of a file with a dangerous type, classified as CWE-434. This could potentially allow an attacker to upload malicious files, leading to various...
PT-2024-26966 · Verint · Verint
Name of the Vulnerable Software and Affected Versions: Verint affected versions not specified Description: The issue is related to improper neutralization of script-related HTML tags in a web page, which can lead to basic cross-site scripting XSS. Recommendations: At the moment, there is no...
Verint Workforce Optimization Cross-Site Scripting Vulnerability
Verint Systems Verint Workforce Optimization WFO is an employee performance management solution from Verint Systems, USA. The product supports workforce management, call recording, automated quality management, performance management, text and desktop analytics, and more. A cross-site scripting...
Verint Engagement Management Cross-Site Scripting Vulnerability
Verint Engagement Management is a unified platform for knowledge management, process management, case management, email management, live chat, co-browsing and more. A cross-site scripting vulnerability exists in Verint Engagement Management version 15.3 Update 2023R2, which stems from the lack of...
CVE-2023-33257
Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...
CVE-2023-33257
Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...
CVE-2023-33257
Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...
Input validation
Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...
CVE-2023-33257
Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat...
PT-2023-24250 · Verint · Verint Engagement Management
Name of the Vulnerable Software and Affected Versions: Verint Engagement Management version 15.3 Update 2023R2 Description: The issue concerns HTML injection via the user data form in the live chat. This allows for potential malicious code injection. Recommendations: For Verint Engagement...