32 matches found
CVE-2025-62320 HTML Injection Leading to Data Exfiltration to External Server vulnerability affects HCL Unica Platform
HTML Injection can be carried out in Product when a web application does not properly check or clean user input before showing it on a webpage. Because of this, an attacker may insert unwanted HTML code into the page. When the browser loads the page, it may automatically interact with external...
CVE-2025-62320
CVE-2025-62320 describes an HTML Injection vulnerability affecting the HCL Unica Platform. The issue arises when a web application does not properly validate or sanitize user input before rendering it on pages, enabling an attacker to inject HTML. When a browser loads the affected page, it may au...
CVE-2025-52614
HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...
CVE-2025-31996
HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users...
CVE-2025-31996
HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users...
CVE-2025-31996 Unprotected files are impacting HCL Unica Platform
HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users...
CVE-2025-31996
CVE-2025-31996 affects HCL Unica Platform with unprotected files caused by improper access controls. Files may disclose private or system information, enabling compromise of the application, infrastructure, or users. Documents describe the issue and potential impact, but do not provide concrete v...
EUVD-2025-33890
HCL Unica Platform is impacted by misconfigured Content Security Policy CSP. These can result in malicious resources getting loaded and browsers may come across certain types of attacks, such as cross-site scripting and clickjacking...
EUVD-2025-33889
HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...
CVE-2025-52615
HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to less secure browser default treatment for the policies controlled by these headers...
CVE-2025-52615 HCL Unica Platform is impacted by misconfigured security related HTTP headers
HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to less secure browser default treatment for the policies controlled by these headers...
CVE-2025-52615 HCL Unica Platform is impacted by misconfigured security related HTTP headers
HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to less secure browser default treatment for the policies controlled by these headers...
CVE-2025-31969
HCL Unica Platform is impacted by misconfigured Content Security Policy CSP. These can result in malicious resources getting loaded and browsers may come across certain types of attacks, such as cross-site scripting and clickjacking...
CVE-2025-52614
HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...
CVE-2025-52614 HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability
HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...
CVE-2025-52614 HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability
HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...
CVE-2025-31969 HCL Unica Platform is impacted by misconfigured Content Security Policy (CSP)
HCL Unica Platform is impacted by misconfigured Content Security Policy CSP. These can result in malicious resources getting loaded and browsers may come across certain types of attacks, such as cross-site scripting and clickjacking...
CVE-2025-31969
The CVE-2025-31969 issue affects HCL Unica Platform due to a misconfigured Content Security Policy (CSP). The underlying problem is CSP misconfiguration that can allow loading of malicious resources, with potential browser attacks including cross-site scripting and clickjacking. Documents consist...
HCL Unica Platform 安全漏洞
HCL Unica Platform is a state-of-the-art enterprise automated marketing platform from HCL India. No manual effort is required to handle routine marketing tasks and capture the most effective leads. HCL Unica Platform has a security vulnerability that stems from a misconfigured content security...
HCL Unica Platform 安全漏洞
HCL Unica Platform is a state-of-the-art enterprise automated marketing platform from HCL India. It handles routine marketing tasks and captures the most effective leads without the need for manual intervention. HCL Unica Platform suffers from a security vulnerability that stems from cookies not...