48 matches found
CVE-2021-27741
" Security vulnerability in HCL Commerce Management Center allowing XML external entity XXE injection"...
EUVD-2021-14492
Malware in sbrugna...
EUVD-2020-6427
Malware in sbrugna...
EUVD-2020-6428
Malware in sbrugna...
EUVD-2021-14482
Malware in sbrugna...
EUVD-2023-41419
Malicious code in bioql PyPI...
EUVD-2024-21071
Malicious code in bioql PyPI...
EUVD-2022-41229
Malicious code in bioql PyPI...
CVE-2020-14274
Information disclosure vulnerability in HCL Commerce 9.0.1.9 through 9.0.1.14 and 9.1 through 9.1.4 could allow a remote attacker to obtain user personal data via unknown vectors...
CVE-2024-23576
Security vulnerability in HCL Commerce 9.1.12 and 9.1.13 could allow denial of service, disclosure of user personal data, and performing of unauthorized administrative operations...
HCL Technologies HCL Commerce 安全漏洞
HCL Technologies HCL Commerce is a software platform framework for e-commerce from HCL Technologies, USA. The software includes marketing, sales, customer and order processing functionality in a customizable and integrated package. It is a unified platform that provides the ability to conduct...
CVE-2024-23576 HCL Commerce is potentially affected by a denial of service and information disclosure vulnerability
Security vulnerability in HCL Commerce 9.1.12 and 9.1.13 could allow denial of service, disclosure of user personal data, and performing of unauthorized administrative operations...
CVE-2024-23576
The vulnerability (CVE-2024-23576) affects HCL Commerce versions 9.1.12 and 9.1.13. The issue can lead to denial of service, disclosure of user personal data, and execution of unauthorized administrative operations. The provided documents do not include concrete exploit details, vectors, or offic...
CVE-2024-23576 HCL Commerce is potentially affected by a denial of service and information disclosure vulnerability
Security vulnerability in HCL Commerce 9.1.12 and 9.1.13 could allow denial of service, disclosure of user personal data, and performing of unauthorized administrative operations...
CVE-2023-37532
HCL Commerce Remote Store server could allow a remote attacker, using a specially-crafted URL, to read arbitrary files on the system...
Design/Logic Flaw
HCL Commerce Remote Store server could allow a remote attacker, using a specially-crafted URL, to read arbitrary files on the system...
CVE-2023-37532
CVE-2023-37532 affects HCL Commerce Remote Store server. The connected sources describe a directory traversal vulnerability that lets an attacker read arbitrary files on the target system by sending a specially crafted URL. The core issue is a failure to properly sanitize file paths, enabling acc...
CVE-2023-37532 A path traversal vulnerability affects HCL Commerce
HCL Commerce Remote Store server could allow a remote attacker, using a specially-crafted URL, to read arbitrary files on the system...
CVE-2023-37532 A path traversal vulnerability affects HCL Commerce
HCL Commerce Remote Store server could allow a remote attacker, using a specially-crafted URL, to read arbitrary files on the system...
CVE-2022-38656
HCL Commerce, when using Elasticsearch, can allow a remote attacker to cause a denial of service attack on the site and make administrative changes...