Vulnerabilities (CVE)

Filtered by vendor Verint Subscribe
Filtered by product Workforce Optimization
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-36396 1 Verint 1 Workforce Optimization 2024-11-21 N/A 8.8 HIGH
Verint - CWE-434: Unrestricted Upload of File with Dangerous Type
CVE-2024-36395 1 Verint 1 Workforce Optimization 2024-11-21 N/A 6.1 MEDIUM
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
CVE-2021-41825 1 Verint 1 Workforce Optimization 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter.
CVE-2021-36450 1 Verint 1 Workforce Optimization 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV parameter.
CVE-2020-23446 1 Verint 1 Workforce Optimization 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via API
CVE-2020-13480 1 Verint 1 Workforce Optimization 2024-11-21 3.5 LOW 5.4 MEDIUM
Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email" feature.