Approved changes feed: RSS · Atom

cpe:2.3:a:nchsoftware:express_accounts:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorNchsoftware (2fa18c30-743e-5430-8678-f6c6515c7625)
ProductExpress Accounts (8e108d7b-ac8f-5229-8d35-64c53e605c49)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-13474 vulnerable 2026-06-08 05:18:00.687570 Details available
In NCH Express Accounts 8.24 and earlier, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as Add/Edit users.
Published: 2020-12-28T21:19:19.000Z
Updated: 2024-08-04T12:18:18.326Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-13473 vulnerable 2026-06-08 05:18:00.687145 Details available
NCH Express Accounts 8.24 and earlier allows local users to discover the cleartext password by reading the configuration file.
Published: 2020-12-28T21:16:55.000Z
Updated: 2024-08-04T12:18:18.269Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.