Vulnerabilities > Verint > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-06-13 CVE-2024-36395 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Verint Workforce Optimization 15.2.918.262
Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
network
low complexity
verint CWE-80
6.1
2023-08-02 CVE-2023-33257 Cross-site Scripting vulnerability in Verint Engagement Management 15.3
Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat.
network
low complexity
verint CWE-79
5.4
2021-12-15 CVE-2021-36450 Cross-site Scripting vulnerability in Verint Workforce Optimization 15.2.8.10048
Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV parameter.
network
low complexity
verint CWE-79
6.1
2021-10-08 CVE-2021-41825 Cross-site Scripting vulnerability in Verint Workforce Optimization 15.2.5.1033
Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter.
network
low complexity
verint CWE-79
5.3
2020-09-22 CVE-2020-23446 Authorization Bypass Through User-Controlled Key vulnerability in Verint Workforce Optimization 15.1.0.37634
Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via API
network
low complexity
verint CWE-639
5.3
2020-07-14 CVE-2019-12783 Open Redirect vulnerability in Verint Impact 360 15.1
An issue was discovered in Verint Impact 360 15.1.
network
low complexity
verint CWE-601
6.1
2020-07-14 CVE-2019-12773 Cross-site Scripting vulnerability in Verint Impact 360 15.1
An issue was discovered in Verint Impact 360 15.1.
network
low complexity
verint CWE-79
6.1
2020-06-22 CVE-2020-13480 Cross-site Scripting vulnerability in Verint Workforce Optimization 15.2
Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email" feature.
network
low complexity
verint CWE-79
5.4
2018-10-04 CVE-2018-17871 Insufficiently Protected Credentials vulnerability in Verint Verba Collaboration Compliance and Quality Management Platform
Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Incorrect Access Control.
network
low complexity
verint CWE-522
6.5