Cisco Finesse XSS (cisco-sa-cc-xss-MrNAH5Jh)

According to its self-reported version, Cisco Finesse is affected by a cross-site scripting vulnerability in the web-based management interface due to insufficient validation of user-supplied input. An unauthenticated, remote attacker could exploit this vulnerability by persuading a user of the...

CVE-2025-52614

CVE-2025-52614 affects HCL Unica Platform. The issue is a cookie without the HTTPOnly flag, enabling a malicious actor to induce the event by sending users crafted links, directly or via a site. Public sources provide the vulnerability description but do not specify affected versions, exploit det...

CVE-2021-27788

HCL Verse is susceptible to a Cross Site Scripting XSS vulnerability. By tricking a user into clicking a crafted URL, a remote unauthenticated attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other...

Zammad 注入漏洞

Zammad is a Web-based open source helpdesk/customer support system. Zammad suffers from a text injection/content spoofing vulnerability. A remote attacker can exploit this vulnerability to trick a user into visiting the attacker's page...