CVE-2025-31988 | HCL Digital Experience 8.5/9.0/9.5 Administrative UI cross site scripting (KB0123435)

Inserito da Angelo Barbosa | Ago 19, 2025 | CVE

A vulnerability was found in HCL Digital Experience 8.5/9.0/9.5. It has been classified as problematic. The affected element is an unknown function of the component Administrative UI. This manipulation causes cross site scripting.

The identification of this vulnerability is CVE-2025-31988. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-31988 | HCL Digital Experience 8.5/9.0/9.5 Administrative UI cross site scripting (KB0123435)

Post correlati

CVE-2024-20088 | MediaTek MT8796 Keyinstall out-of-bounds (MSV-1543 / ALPS08932099)

CVE-2024-13530 | zia-imtiaz Custom Login Page Styler Plugin up to 7.1.1 on WordPress lps_handle_delete_all_logs authorization

CVE-2024-36994 | Splunk Enterprise/Cloud Platform Web Bulletin Message cross site scripting (SVD-2024-0714)

CVE-2024-54266 | ImageRecycle PDF & Image Compression Plugin up to 3.1.16 on WordPress cross site scripting