CVE-2020-13476 — NCH Express Invoice 8.06 to 8.24 is vulnerable to Reflected XSS in the Quotes Li... | CVE Daily

Medium CVSS 4.8

Overview

NCH Express Invoice 8.06 to 8.24 is vulnerable to Reflected XSS in the Quotes List module.

CWE: CWE-79 Published: 2020-12-28T22:15:12.487

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 4.8 (MEDIUM)
Detected tags: none (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Recommended tools

Tags