Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nchsoftware vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-37448
Cross Site Scripting (XSS) exists in NCH IVM Attendant v5.12 and previous versions via the Mailbox name (stored).
Nchsoftware Ivm Attendant
3.5
CVSSv2
CVE-2021-37450
Cross Site Scripting (XSS) exists in NCH IVM Attendant v5.12 and previous versions via /ogmprop?id= (reflected).
Nchsoftware Ivm Attendant
3.5
CVSSv2
CVE-2021-37451
Cross Site Scripting (XSS) exists in NCH IVM Attendant v5.12 and previous versions via /msglist?mbx= (reflected).
Nchsoftware Ivm Attendant
3.5
CVSSv2
CVE-2021-37453
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and previous versions via the extension name (stored).
Nchsoftware Axon Pbx
3.5
CVSSv2
CVE-2021-37454
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and previous versions via the line name (stored).
Nchsoftware Axon Pbx
3.5
CVSSv2
CVE-2021-37456
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and previous versions via the blacklist IP address (stored).
Nchsoftware Axon Pbx
3.5
CVSSv2
CVE-2021-37458
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and previous versions via the primary phone field (stored).
Nchsoftware Axon Pbx
3.5
CVSSv2
CVE-2021-37460
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and previous versions via /planprop?id= (reflected).
Nchsoftware Axon Pbx
3.5
CVSSv2
CVE-2021-37462
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and previous versions via /ipblacklist?errorip= (reflected).
Nchsoftware Axon Pbx
6.5
CVSSv2
CVE-2020-11561
In NCH Express Invoice 7.25, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as the "Add New Item" screen.
Nchsoftware Express Invoice 7.25
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »