Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
HCL Launch is vulnerable to HTML injection. HTML code is stored and included without being sanitized. This can lead to further attacks such as XSS and Open Redirections.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
HCL Technologies HCL Launch 跨站脚本漏洞
Vulnerability Description
HCL Technologies HCL Launch是美国HCL Technologies公司的一款多功能的企业级持续交付自动化软件。用于处理 DevOps 中最复杂的部署流程。 HCL Launch存在安全漏洞,该漏洞源于易受到 HTML 注入攻击。受影响的产品和版本:HCL Launch 6.2.0.0 至6.2.7.18版本,7.0.5.0 至7.0.5.13版本,7.1.0.0 至7.1.2.9版本, 7.2.0.0 至7.2.3.2版本,7.3.0.0版本。
CVSS Information
N/A
Vulnerability Type
N/A