Verint: >> Workforce Optimization Security Vulnerabilities
Verint - CWE-434: Unrestricted Upload of File with Dangerous Type
CVSS Score
8.8
EPSS Score
0.002
Published
2024-06-13
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
CVSS Score
6.1
EPSS Score
0.001
Published
2024-06-13
Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV parameter.
CVSS Score
6.1
EPSS Score
0.251
Published
2021-12-15
Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter.
CVSS Score
5.3
EPSS Score
0.006
Published
2021-10-08
Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via API
CVSS Score
5.3
EPSS Score
0.005
Published
2020-09-22
Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email" feature.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-06-22