RSS   Podatności dla 'Quorum'   RSS

2021-07-25
 
CVE-2021-37445

CWE-22
 
 
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via logprop?file=/.. for file reading.

 
 
CVE-2021-37463

CWE-79
 
 
In NCH Quorum v2.03 and earlier, XSS exists via User Display Name (stored).

 
 
CVE-2021-37464

CWE-79
 
 
In NCH Quorum v2.03 and earlier, XSS exists via Conference Description (stored).

 
 
CVE-2021-37465

CWE-79
 
 
In NCH Quorum v2.03 and earlier, XSS exists via /uploaddoc?id= (reflected).

 
 
CVE-2021-37466

CWE-79
 
 
In NCH Quorum v2.03 and earlier, XSS exists via /conference?id= (reflected).

 
 
CVE-2021-37467

CWE-79
 
 
In NCH Quorum v2.03 and earlier, XSS exists via /conferencebrowseuploadfile?confid= (reflected).

 

 >>> Vendor: Nchsoftware 7 Produkty
Meo encryption software
Axon pbx
Express invoice
Express accounts
Ivm attendant
Quorum
Webdictate

Copyright 2024, cxsecurity.com

 

Back to Top