Show filters
9 Total Results
Displaying 1-9 of 9
Sort by:
Attacker Value
Unknown
CVE-2021-37446
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentprop?file=/.. for file reading.
0
Attacker Value
Unknown
CVE-2021-37445
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via logprop?file=/.. for file reading.
0
Attacker Value
Unknown
CVE-2021-37447
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. for file deletion.
0
Attacker Value
Unknown
CVE-2021-37452
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
NCH Quorum v2.03 and earlier allows local users to discover cleartext login information relating to users by reading the local .dat configuration files.
0
Attacker Value
Unknown
CVE-2021-37463
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, XSS exists via User Display Name (stored).
0
Attacker Value
Unknown
CVE-2021-37467
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, XSS exists via /conferencebrowseuploadfile?confid= (reflected).
0
Attacker Value
Unknown
CVE-2021-37464
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, XSS exists via Conference Description (stored).
0
Attacker Value
Unknown
CVE-2021-37466
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, XSS exists via /conference?id= (reflected).
0
Attacker Value
Unknown
CVE-2021-37465
Disclosure Date: July 25, 2021 (last updated February 23, 2025)
In NCH Quorum v2.03 and earlier, XSS exists via /uploaddoc?id= (reflected).
0
