Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter.
References
Link | Resource |
---|---|
https://0xy37.medium.com/my-first-cve-cve-2021-41825-verint-workforce-optimization-html-injection-6dd450e7f2af | Exploit Third Party Advisory |
https://www.verint.com/engagement/our-offerings/solutions/workforce-optimization/ | Product Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-08T15:07:00
Updated: 2021-10-08T15:07:00
Reserved: 2021-09-29T00:00:00
Link: CVE-2021-41825
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-08T16:15:08.160
Modified: 2022-05-03T16:04:40.443
Link: CVE-2021-41825
JSON object: View
Redhat Information
No data.
CWE