Lucene search
+L

425 matches found

Cvelist
Cvelist
added 2020/10/06 5:18 p.m.30 views

CVE-2019-4325

"HCL AppScan Enterprise makes use of broken or risky cryptographic algorithm to store REST API user details."...

5.3AI score0.00542EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/08 12:0 a.m.11 views

Unspecified Vulnerability in HCL AppScan Enterprise advisory API

HCL AppScan Enterprise is a suite of dynamic analysis and testing tools from HCL India, which is primarily used for web security testing. A security vulnerability exists in the Advisory API documentation in HCL AppScan Enterprise 10.0.0 and earlier versions. The vulnerability can be exploited by ...

4.3CVSS6.8AI score0.0075EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/08 12:0 a.m.10 views

HCL AppScan Cross-Site Scripting Vulnerability

HCL AppScan is a suite of dynamic analysis testing tools from HCL India, which is primarily used for web security testing. A cross-site scripting vulnerability exists in HCL AppScan Enterprise Edition version 10.0.0 and earlier. The vulnerability stems from the lack of proper validation of...

6.1CVSS6.4AI score0.00648EPSS
Exploits0References1
OSV
OSV
added 2020/07/07 3:15 p.m.7 views

CVE-2019-4324

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."...

6.1CVSS6.4AI score0.00648EPSS
Exploits0References2
NVD
NVD
added 2020/07/07 3:15 p.m.25 views

CVE-2019-4324

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."...

6.1CVSS0.00648EPSS
Exploits0References2
NVD
NVD
added 2020/07/07 3:15 p.m.24 views

CVE-2019-4323

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."...

4.3CVSS0.0075EPSS
Exploits0References2
OSV
OSV
added 2020/07/07 3:15 p.m.14 views

CVE-2019-4323

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."...

4.3CVSS5.8AI score0.0075EPSS
Exploits0References2
Prion
Prion
added 2020/07/07 3:15 p.m.25 views

Spoofing

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."...

4.3CVSS4.6AI score0.0075EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/07/07 3:15 p.m.19 views

Cross site scripting

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."...

4.3CVSS6AI score0.00648EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/07/07 2:49 p.m.44 views

CVE-2019-4323

CVE-2019-4323 concerns HCL AppScan Enterprise’s advisory API documentation being vulnerable to clickjacking. The CNVD entry specifies that AppScan Enterprise 10.0.0 and earlier versions are affected and that an attacker could inject content from untrustworthy pages by framing the advisory API doc...

4.3CVSS4.5AI score0.0075EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/07/07 2:49 p.m.22 views

CVE-2019-4323

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."...

4.6AI score0.0075EPSS
Exploits0References2
CVE
CVE
added 2020/07/07 2:45 p.m.55 views

CVE-2019-4324

The provided connected documents confirm CVE-2019-4324 affects HCL AppScan Enterprise and describe it as a Cross-Site Scripting vulnerability that occurs when importing a specially crafted test policy. The exact root cause, affected versions/products beyond “HCL AppScan Enterprise,” and practical...

6.1CVSS6AI score0.00648EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/07/07 2:45 p.m.24 views

CVE-2019-4324

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."...

6AI score0.00648EPSS
Exploits0References2
CNVD
CNVD
added 2020/04/22 12:0 a.m.2 views

HCL Technologies AppScan Enterprise Trust Management Issue Vulnerability

HCL Technologies AppScan is a suite of dynamic analysis testing tools from HCL Technologies, India, which is primarily used for web security testing. A security vulnerability exists in HCL Technologies AppScan Enterprise 9.0.3.14 and earlier versions, which stems from the product's use of...

7.5CVSS6.8AI score0.01015EPSS
Exploits0References1
OSV
OSV
added 2020/04/21 7:15 p.m.4 views

CVE-2019-4327

"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by attackers to get unauthorized access to application's encrypted files."...

7.5CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2020/04/21 7:15 p.m.25 views

CVE-2019-4327

"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by attackers to get unauthorized access to application's encrypted files."...

7.5CVSS7.5AI score0.01015EPSS
Exploits0References1
Prion
Prion
added 2020/04/21 7:15 p.m.18 views

Hardcoded credentials

"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by attackers to get unauthorized access to application's encrypted files."...

5CVSS7.5AI score0.01015EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/04/21 6:13 p.m.50 views

CVE-2019-4327

CVE-2019-4327 affects HCL AppScan Enterprise. The connected CNVD entry specifies the vulnerability exists in AppScan Enterprise versions 9.0.3.14 and earlier, arising from the use of hard-coded credentials. As a result, an attacker could gain unauthorized access to the application's encrypted fil...

7.5CVSS7.5AI score0.01015EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/21 6:13 p.m.28 views

CVE-2019-4327

"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by attackers to get unauthorized access to application's encrypted files."...

7.5AI score0.01015EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/08 12:0 a.m.2 views

Unspecified Vulnerability in HCL Technologies AppScan Standard Edition

HCL Technologies AppScan Standard Edition is a suite of dynamic analysis testing tools from HCL Technologies, India, which is primarily used for web security testing. HCL Technologies AppScan Standard Edition suffers from an unspecified vulnerability that stems from an incorrect account lockout...

9.8CVSS6.9AI score0.01032EPSS
Exploits0References1
Rows per page
Query Builder