2 matches found
CVE-2021-37448
Cross Site Scripting XSS exists in NCH IVM Attendant v5.12 and earlier via the Mailbox name stored...
CVE-2021-37448
CVE-2021-37448 affects NCH IVM Attendant v5.12 and earlier. The root cause is stored XSS in the Mailbox name due to insufficient input filtering for special characters, enabling execution of client-side code. Affected software is NCH IVM Attendant; impact is cross-site scripting with potential fo...