Skip to main content

Webdictate

2 CVEs product

Monthly

CVE-2021-37470 MEDIUM POC This Month

In NCH WebDictate v2.13, persistent Cross Site Scripting (XSS) exists in the Recipient Name field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Webdictate
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-37469 MEDIUM POC This Month

In NCH WebDictate v2.13 and earlier, authenticated users can abuse logprop?file=/.. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Webdictate
NVD GitHub
CVSS 3.1
6.5
EPSS
1.2%
EPSS 1% CVSS 5.4
MEDIUM POC This Month

In NCH WebDictate v2.13, persistent Cross Site Scripting (XSS) exists in the Recipient Name field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Webdictate
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM POC This Month

In NCH WebDictate v2.13 and earlier, authenticated users can abuse logprop?file=/.. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Webdictate
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy