Lucene search
K

109 matches found

Vulnrichment
Vulnrichment
added 2025/08/19 6:12 p.m.6 views

CVE-2025-31988 HCL Digital Experience is susceptible to cross site scripting (XSS)

HCL Digital Experience is susceptible to cross site scripting XSS in an administrative UI with restricted access...

4.9CVSS6.1AI score0.00224EPSS
Exploits0References1
CVE
CVE
added 2025/08/19 6:12 p.m.20 views

CVE-2025-31988

CVE-2025-31988 affects HCL Digital Experience. It is described as a cross-site scripting (XSS) vulnerability in an administrative UI with restricted access. Publiced technical details in connected sources show CVSS 3.1 with a Network attack vector, Low attack complexity, Privileges Required: High...

4.9CVSS6.1AI score0.00224EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.9 views

PT-2025-33823 · Hcl · Hcl Digital Experience

Name of the Vulnerable Software and Affected Versions: HCL Digital Experience affected versions not specified Description: HCL Digital Experience is susceptible to cross-site scripting XSS within an administrative user interface that has restricted access. Recommendations: At the moment, there is...

4.9CVSS6AI score0.00224EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.6 views

HCL Digital Experience 安全漏洞

HCL Digital Experience is a suite of digital experience platforms, content delivery solutions from HCL India. A security vulnerability exists in HCL Digital Experience that stems from the restricted access administrative interface being susceptible to cross-site scripting attacks...

4.9CVSS6.1AI score0.00224EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:45 p.m.7 views

CVE-2020-14222

HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross site scripting XSS. One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism email, other web site...

6.1CVSS6.1AI score0.00634EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:20 p.m.8 views

CVE-2020-14255

HCL Digital Experience 9.5 containers include vulnerabilities that could expose sensitive data to unauthorized parties via crafted requests. These affect containers only. These do not affect traditional on-premise installations...

7.5CVSS6.9AI score0.01058EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:19 p.m.5 views

CVE-2020-14221

HCL Digital Experience 8.5, 9.0, and 9.5 exposes information about the server to unauthorized users...

4.9CVSS6.6AI score0.00842EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:48 p.m.7 views

CVE-2020-14223

HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross-site scripting XSS. The vulnerability could be employed in a reflected or non-persistent XSS attack...

6.1CVSS5.5AI score0.00641EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:37 p.m.7 views

CVE-2020-4101

"HCL Digital Experience is susceptible to Server Side Request Forgery."...

9.8CVSS7AI score0.01089EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/22 3:19 p.m.19 views

CVE-2025-0254

HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle MitM attacks prior to 9.5 CF226. An attacker could intercept and potentially alter communication between two parties...

5.9CVSS7AI score0.00275EPSS
Exploits0References3
NVD
NVD
added 2025/03/20 2:15 p.m.12 views

CVE-2025-0254

HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle MitM attacks prior to 9.5 CF226. An attacker could intercept and potentially alter communication between two parties...

5.9CVSS0.00275EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/20 2:2 p.m.17 views

CVE-2025-0254 HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle (MitM) attacks prior to 9.5 CF226.

HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle MitM attacks prior to 9.5 CF226. An attacker could intercept and potentially alter communication between two parties...

5.9CVSS5.6AI score0.00275EPSS
Exploits0References1
CVE
CVE
added 2025/03/20 2:2 p.m.100 views

CVE-2025-0254

CVE-2025-0254 affects HCL Digital Experience components Ring API and dxclient. The vulnerability enables man-in-the-middle (MitM) attacks that could allow an attacker to intercept and potentially alter communications between two parties. Affected versions are prior to 9.5 CF226. The available doc...

5.9CVSS5.6AI score0.00275EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/20 2:2 p.m.22 views

CVE-2025-0254 HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle (MitM) attacks prior to 9.5 CF226.

HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle MitM attacks prior to 9.5 CF226. An attacker could intercept and potentially alter communication between two parties...

5.9CVSS0.00275EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.5 views

HCL Digital Experience 安全漏洞

HCL Digital Experience is a suite of digital experience platforms, content delivery solutions from HCL India. A security vulnerability exists in HCL Digital Experience versions prior to 9.5 CF226, which stems from a possible man-in-the-middle attack that could lead to interception and tampering o...

5.9CVSS6.5AI score0.00275EPSS
Exploits0References1
NVD
NVD
added 2023/10/11 1:15 p.m.24 views

CVE-2023-37538

HCL Digital Experience is susceptible to cross site scripting XSS. One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism email, other web site...

9.3CVSS8.9AI score0.00359EPSS
Exploits0References1
OSV
OSV
added 2023/10/11 1:15 p.m.4 views

CVE-2023-37538

HCL Digital Experience is susceptible to cross site scripting XSS. One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism email, other web site...

6.1CVSS5.2AI score0.00359EPSS
Exploits0References1
Prion
Prion
added 2023/10/11 1:15 p.m.17 views

Cross site scripting

HCL Digital Experience is susceptible to cross site scripting XSS. One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism email, other web site...

5.8CVSS6AI score0.00359EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/11 12:53 p.m.19 views

CVE-2023-37538 HCL Digital Experience is susceptible to cross site scripting (XSS)

HCL Digital Experience is susceptible to cross site scripting XSS. One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism email, other web site...

9.3CVSS8.9AI score0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/11 12:53 p.m.12 views

CVE-2023-37538 HCL Digital Experience is susceptible to cross site scripting (XSS)

HCL Digital Experience is susceptible to cross site scripting XSS. One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism email, other web site...

9.3CVSS6.1AI score0.00359EPSS
Exploits0References1
Rows per page
Query Builder