46 matches found
CVE-2026-21768
The compose-rich-editor library v1.0.0-rc14 used in HCL Verse for Android's rich text email composition fails to properly validate all HTML input thereby allowing malicious content to be executed in certain situations...
CVE-2026-21768 HCL Verse for Android is susceptible to an injection vulnerability
The compose-rich-editor library v1.0.0-rc14 used in HCL Verse for Android's rich text email composition fails to properly validate all HTML input thereby allowing malicious content to be executed in certain situations...
CVE-2026-21768
CVE-2026-21768 affects the compose-rich-editor library (v1.0.0-rc14) used in HCL Verse for Android. The vulnerability arises from improper validation of HTML input in the rich text editor, enabling execution of malicious content in certain scenarios. According to NVD, CVSSv3.1 base score is 6.3 (...
EUVD-2026-38035
The compose-rich-editor library v1.0.0-rc14 used in HCL Verse for Android's rich text email composition fails to properly validate all HTML input thereby allowing malicious content to be executed in certain situations...
EUVD-2020-25327
Malware in sbrugna...
EUVD-2021-14529
Malware in sbrugna...
EUVD-2023-31738
Malicious code in bioql PyPI...
EUVD-2023-41383
Malicious code in bioql PyPI...
CVE-2020-4100
"HCL Verse for Android was found to employ dynamic code loading. This mechanism allows a developer to specify which components of the application should not be loaded by default when the application is started. Typically, core components and additional dependencies are loaded natively at runtime;...
CVE-2020-4080
HCL Verse v10 and v11 is susceptible to a Stored Cross-Site Scripting XSS vulnerability due to improper handling of message content. An unauthenticated remote attacker could exploit this vulnerability using specially-crafted markup to execute script in a victim's web browser within the security...
CVE-2023-37496
HCL Verse is susceptible to a Stored Cross Site Scripting XSS vulnerability. An attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other sensitive information...
CVE-2023-37496
HCL Verse is susceptible to a Stored Cross Site Scripting XSS vulnerability. An attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other sensitive information...
Cross site scripting
HCL Verse is susceptible to a Stored Cross Site Scripting XSS vulnerability. An attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other sensitive information...
CVE-2023-37496 HCL Verse is susceptible to a Stored Cross-Site Scripting (XSS) Vulnerability
HCL Verse is susceptible to a Stored Cross Site Scripting XSS vulnerability. An attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other sensitive information...
CVE-2023-37496
HCL Verse is affected by a stored XSS vulnerability. The issue could allow an attacker to execute script in a victim’s browser and access cookies, session tokens, or other sensitive data. The connected documents identify it as a stored XSS but do not provide affected versions, root-cause details,...
CVE-2023-37496 HCL Verse is susceptible to a Stored Cross-Site Scripting (XSS) Vulnerability
HCL Verse is susceptible to a Stored Cross Site Scripting XSS vulnerability. An attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other sensitive information...
CVE-2023-28013
HCL Verse is susceptible to a Reflected Cross Site Scripting XSS vulnerability. By tricking a user into entering crafted markup a remote, unauthenticated attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, ...
CVE-2023-28013
HCL Verse is susceptible to a Reflected Cross Site Scripting XSS vulnerability. By tricking a user into entering crafted markup a remote, unauthenticated attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, ...
Cross site scripting
HCL Verse is susceptible to a Reflected Cross Site Scripting XSS vulnerability. By tricking a user into entering crafted markup a remote, unauthenticated attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, ...
CVE-2023-28013 HCL Verse is susceptible to a Reflected Cross-Site Scripting (XSS) Vulnerability
HCL Verse is susceptible to a Reflected Cross Site Scripting XSS vulnerability. By tricking a user into entering crafted markup a remote, unauthenticated attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, ...