RSS   Vulnerabilities for 'Webdictate'   RSS

2021-07-25
 
CVE-2021-37470

CWE-79
 

 
In NCH WebDictate v2.13, persistent Cross Site Scripting (XSS) exists in the Recipient Name field. An authenticated user can add or modify the affected field to inject arbitrary JavaScript.

 

 >>> Vendor: Nchsoftware 7 Products
Meo encryption software
Axon pbx
Express invoice
Express accounts
Ivm attendant
Quorum
Webdictate


Copyright 2024, cxsecurity.com

 

Back to Top