Hcltech: >> Hcl Digital Experience Security Vulnerabilities
In HCL Digital Experience, URLs can be constructed to redirect users to untrusted sites.
CVSS Score
6.1
EPSS Score
0.003
Published
2022-12-19
User input included in error response, which could be used in a phishing attack.
CVSS Score
3.1
EPSS Score
0.002
Published
2022-09-22
HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross site scripting (XSS). One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism (email, other web site).
CVSS Score
6.1
EPSS Score
0.004
Published
2020-11-05
"HCL Digital Experience is susceptible to Server Side Request Forgery."
CVSS Score
9.8
EPSS Score
0.004
Published
2020-06-11