Medium severity6.1NVD Advisory· Published Dec 18, 2020· Updated Jun 17, 2026
CVE-2020-4080
CVE-2020-4080
Description
HCL Verse v10 and v11 is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability due to improper handling of message content. An unauthenticated remote attacker could exploit this vulnerability using specially-crafted markup to execute script in a victim's web browser within the security context of the hosting Web site and/or steal the victim's cookie-based authentication credentials.
Affected products
2- HCL/Versedescription
Patches
Vulnerability mechanics
References
1- support.hcltechsw.com/csmnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.