Unrated severityNVD Advisory· Published Apr 24, 2025· Updated Apr 25, 2025
HCL Leap is affected by Cross-site scripting (XSS)
CVE-2022-44759
Description
Improper sanitization of SVG files in HCL Leap allows client-side script injection in deployed applications.
Affected products
2- HCL Software/HCL Leapv5Range: 9.0 - 9.3
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.