CVE-2020-13474 in Express Accountinfo

Summary

by MITRE • 12/29/2020

In NCH Express Accounts 8.24 and earlier, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as Add/Edit users.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Disclosure

12/29/2020

Moderation

accepted

CPE

ready

EPSS

0.00746

KEV

no

Activities

very low

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!