Unrated severityNVD Advisory· Published Apr 24, 2025· Updated Apr 24, 2025
HCL Leap is affected by a cross-site scripting (XSS) vulnerability
CVE-2024-30113
Description
Insufficient sanitization policy in HCL Leap allows client-side script injection in the deployed application through the HTML widget.
Affected products
2- HCL Software/HCL Leapv5Range: < 9.3.6
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.