Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8
CVE-2019-4388
- EPSS 0.21%
- Published 18.12.2019 13:15:12
- Last modified 21.11.2024 04:43:32
HCL AppScan Source 9.0.3.13 and earlier is susceptible to cross-site scripting (XSS) attacks by allowing users to embed arbitrary JavaScript code in the Web UI.
7.1
CVE-2019-16188
- EPSS 0.15%
- Published 25.09.2019 17:15:10
- Last modified 21.11.2024 04:30:14
HCL AppScan Source before 9.03.13 is susceptible to XML External Entity (XXE) attacks in multiple locations. In particular, an attacker can send a specially crafted .ozasmt file to a targeted victim and ask the victim to open it. When the victim impo...
1