Lucene search
K

32 matches found

Cvelist
Cvelist
added 2026/03/17 12:2 p.m.24 views

CVE-2025-62320 HTML Injection Leading to Data Exfiltration to External Server vulnerability affects HCL Unica Platform

HTML Injection can be carried out in Product when a web application does not properly check or clean user input before showing it on a webpage. Because of this, an attacker may insert unwanted HTML code into the page. When the browser loads the page, it may automatically interact with external...

4.7CVSS0.00158EPSS
Exploits0References1
CVE
CVE
added 2026/03/17 12:2 p.m.8 views

CVE-2025-62320

CVE-2025-62320 describes an HTML Injection vulnerability affecting the HCL Unica Platform. The issue arises when a web application does not properly validate or sanitize user input before rendering it on pages, enabling an attacker to inject HTML. When a browser loads the affected page, it may au...

6.1CVSS5.8AI score0.00158EPSS
Exploits0References1Affected Software9
RedhatCVE
RedhatCVE
added 2025/10/13 8:27 a.m.4 views

CVE-2025-52614

HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...

4.3CVSS6.8AI score0.00129EPSS
Exploits0References1
OSV
OSV
added 2025/10/13 4:15 a.m.5 views

CVE-2025-31996

HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users...

7.5CVSS5.8AI score0.00226EPSS
Exploits0References1
NVD
NVD
added 2025/10/13 4:15 a.m.6 views

CVE-2025-31996

HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users...

7.5CVSS0.00226EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/13 3:46 a.m.23 views

CVE-2025-31996 Unprotected files are impacting HCL Unica Platform

HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users...

5.3CVSS0.00226EPSS
Exploits0References1
CVE
CVE
added 2025/10/13 3:46 a.m.14 views

CVE-2025-31996

CVE-2025-31996 affects HCL Unica Platform with unprotected files caused by improper access controls. Files may disclose private or system information, enabling compromise of the application, infrastructure, or users. Documents describe the issue and potential impact, but do not provide concrete v...

7.5CVSS6.2AI score0.00226EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/12 9:30 a.m.4 views

EUVD-2025-33890

HCL Unica Platform is impacted by misconfigured Content Security Policy CSP. These can result in malicious resources getting loaded and browsers may come across certain types of attacks, such as cross-site scripting and clickjacking...

4CVSS5.8AI score0.00153EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/12 9:30 a.m.4 views

EUVD-2025-33889

HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...

3.5CVSS6.3AI score0.00129EPSS
Exploits0References2
OSV
OSV
added 2025/10/12 9:15 a.m.4 views

CVE-2025-52615

HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to less secure browser default treatment for the policies controlled by these headers...

5.3CVSS5.8AI score0.00197EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/12 8:18 a.m.3 views

CVE-2025-52615 HCL Unica Platform is impacted by misconfigured security related HTTP headers

HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to less secure browser default treatment for the policies controlled by these headers...

3.5CVSS6.5AI score0.00197EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/12 8:18 a.m.6 views

CVE-2025-52615 HCL Unica Platform is impacted by misconfigured security related HTTP headers

HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to less secure browser default treatment for the policies controlled by these headers...

3.5CVSS0.00197EPSS
Exploits0References1
OSV
OSV
added 2025/10/12 8:15 a.m.2 views

CVE-2025-31969

HCL Unica Platform is impacted by misconfigured Content Security Policy CSP. These can result in malicious resources getting loaded and browsers may come across certain types of attacks, such as cross-site scripting and clickjacking...

6.1CVSS5.7AI score0.00153EPSS
Exploits0References1
NVD
NVD
added 2025/10/12 8:15 a.m.5 views

CVE-2025-52614

HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...

4.3CVSS0.00129EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/12 7:52 a.m.6 views

CVE-2025-52614 HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability

HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...

3.5CVSS0.00129EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/12 7:52 a.m.3 views

CVE-2025-52614 HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability

HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious agent may be able to induce this event by feeding a user suitable links, either directly or via another web site...

3.5CVSS6.4AI score0.00129EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/12 7:37 a.m.4 views

CVE-2025-31969 HCL Unica Platform is impacted by misconfigured Content Security Policy (CSP)

HCL Unica Platform is impacted by misconfigured Content Security Policy CSP. These can result in malicious resources getting loaded and browsers may come across certain types of attacks, such as cross-site scripting and clickjacking...

4CVSS5.9AI score0.00153EPSS
Exploits0References1
CVE
CVE
added 2025/10/12 7:37 a.m.12 views

CVE-2025-31969

The CVE-2025-31969 issue affects HCL Unica Platform due to a misconfigured Content Security Policy (CSP). The underlying problem is CSP misconfiguration that can allow loading of malicious resources, with potential browser attacks including cross-site scripting and clickjacking. Documents consist...

6.1CVSS5.9AI score0.00153EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/10/12 12:0 a.m.6 views

HCL Unica Platform 安全漏洞

HCL Unica Platform is a state-of-the-art enterprise automated marketing platform from HCL India. No manual effort is required to handle routine marketing tasks and capture the most effective leads. HCL Unica Platform has a security vulnerability that stems from a misconfigured content security...

6.1CVSS6AI score0.00153EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/12 12:0 a.m.5 views

HCL Unica Platform 安全漏洞

HCL Unica Platform is a state-of-the-art enterprise automated marketing platform from HCL India. It handles routine marketing tasks and captures the most effective leads without the need for manual intervention. HCL Unica Platform suffers from a security vulnerability that stems from cookies not...

4.3CVSS6.7AI score0.00129EPSS
Exploits0References1
Rows per page
Query Builder