Lucene search
+L

5 matches found

cve
cve
added yesterday6 views

CVE-2026-9007

CVE-2026-9007 is a reflected cross-site scripting (XSS) vulnerability in HCL Notes from HCL Software. The issue stems from improper neutralization of input during web page generation, allowing an attacker to execute arbitrary JavaScript in the context of another user. Affected product/version: HC...

5.5CVSS6.3AI score
Exploits0References1
redhatcve
redhatcve
added 2026/02/24 1:34 p.m.10 views

CVE-2025-59873

An information exposure vulnerability exists in Vulnerability in HCL Software ZIE for Web. The application transmits sensitive session tokens and authentication identifiers within the URL query parameters . An attacker who gains access to any network log or operates a site linked from the...

5.9CVSS5.3AI score0.00284EPSS
Exploits0References1
nvd
nvd
added 2026/02/23 11:16 a.m.8 views

CVE-2025-59873

An information exposure vulnerability exists in Vulnerability in HCL Software ZIE for Web. The application transmits sensitive session tokens and authentication identifiers within the URL query parameters . An attacker who gains access to any network log or operates a site linked from the...

5.9CVSS0.00284EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/02/23 12:0 a.m.9 views

HCL Software ZIE for Web 安全漏洞

HCL Software ZIE for Web is a terminal emulation software developed by the Indian company HCL. Version HCL Software ZIE for Web v16 contains a security vulnerability. This vulnerability stems from the application transmitting sensitive session tokens and authentication identifiers through URL que...

5.9CVSS5.8AI score0.00284EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/01/07 7:18 a.m.2 views

CVE-2025-31964 HCL BigFix IVR is impacted by an improper service binding configuration

Improper service binding configuration in internal service components in HCL BigFix IVR version 4.2 allows a privileged attacker to impact service availability via exposure of administrative services bound to external network interfaces instead of the local authentication interface...

2.2CVSS6.3AI score0.00312EPSS
Exploits0References1
Rows per page
Query Builder