HCL Digital Experience is susceptible to cross site scripting (XSS). One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism (email, other web site).
CPE | Name | Operator | Version |
---|---|---|---|
digital_experience | eq | 9.0 | |
digital_experience | eq | 9.5 | |
digital_experience | eq | 8.5 |