7 matches found
Cross site scripting
Verint Workforce Optimization WFO 15.2.8.10048 allows XSS via the control/mynotifications NEWUINAV parameter...
CVE-2021-36450
Verint Workforce Optimization WFO 15.2.8.10048 allows XSS via the control/mynotifications NEWUINAV parameter...
CVE-2021-41825
Verint Workforce Optimization WFO 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter...
CVE-2021-41825
Verint Workforce Optimization WFO 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter...
CVE-2020-23446
Verint Workforce Optimization suite 15.1 15.1.0.37634 has Unauthenticated Information Disclosure via API...
Information disclosure
Verint Workforce Optimization suite 15.1 15.1.0.37634 has Unauthenticated Information Disclosure via API...
Design/Logic Flaw
Verint Workforce Optimization WFO 15.2 allows HTML injection via the "send email" feature...