Security Advisory

CVE-2021-37470

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-25 20:08:15

Last updated 2024-08-04 01:16:04

Assigner mitre

State PUBLISHED

Description

In NCH WebDictate v2.13, persistent Cross Site Scripting (XSS) exists in the Recipient Name field. An authenticated user can add or modify the affected field to inject arbitrary JavaScript.

← Browse all CVEs View on cve.org ↗