Vulnerabilities > Nchsoftware

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-07	CVE-2020-11561	Forced Browsing vulnerability in Nchsoftware Express Invoice 7.25 In NCH Express Invoice 7.25, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as the "Add New Item" screen. network low complexity nchsoftware CWE-425	8.8
2019-10-17	CVE-2019-16330	Cross-site Scripting vulnerability in Nchsoftware Express Accounts Accounting 7.02 In NCH Express Accounts Accounting v7.02, persistent cross site scripting (XSS) exists in Invoices/Sales Orders/Items/Customers/Quotes input field. network low complexity nchsoftware CWE-79	5.4
2019-10-14	CVE-2019-16282	Cross-site Scripting vulnerability in Nchsoftware Express Invoice 7.12 In NCH Express Invoice v7.12, persistent cross site scripting (XSS) exists via the Invoices/Items/Customers/Quotes input field. network low complexity nchsoftware CWE-79	5.4

Vulnerabilities > Nchsoftware {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Nchsoftware"}]}