Filtered by vendor Nchsoftware Subscriptions
Filtered by product Express Accounts Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-13474 1 Nchsoftware 1 Express Accounts 2024-11-21 6.5 Medium
In NCH Express Accounts 8.24 and earlier, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as Add/Edit users.
CVE-2020-13473 1 Nchsoftware 1 Express Accounts 2024-11-21 5.5 Medium
NCH Express Accounts 8.24 and earlier allows local users to discover the cleartext password by reading the configuration file.