HCL Digital Experience is susceptible to cross site scripting (XSS). One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism (email, other web site).
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
hcltech digital experience 9.0 |
||
hcltech digital experience 9.5 |
||
hcltech digital experience 8.5 |
Vulmon