RSS   Vulnerabilities for 'Oempro'   RSS

2020-04-14
 
CVE-2020-9461

CWE-79
 

 
Octech Oempro 4.7 through 4.11 allow stored XSS by an authenticated user. The FolderName parameter of the Media.CreateFolder command is vulnerable.

 
 
CVE-2020-9460

CWE-79
 

 
Octech Oempro 4.7 through 4.11 allow XSS by an authenticated user. The parameter CampaignName in Campaign.Create is vulnerable.

 


Copyright 2024, cxsecurity.com

 

Back to Top