Verint Workforce_optimization

6 CVEs affecting Verint Workforce_optimization. Latest disclosed: 2024-06-13. Critical: 0, High: 1.

Top CVEs affecting Verint Workforce_optimization
CVESeverityScorePublishedSummary
CVE-2024-36396High8.82024-06-13Verint - CWE-434: Unrestricted Upload of File with Dangerous Type
CVE-2024-36395Medium6.12024-06-13Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
CVE-2021-36450Medium6.12021-12-15Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV parameter.
CVE-2020-13480Medium5.42020-06-22Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email" feature.
CVE-2021-41825Medium5.32021-10-08Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter.
CVE-2020-23446Medium5.32020-09-22Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via API