cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-4326,https://securityvulnerability.io/vulnerability/CVE-2019-4326,Web Application Console Vulnerability in HCL AppScan Enterprise,"The web application console of HCL AppScan Enterprise is susceptible to security risks due to the absence of the HTTP Strict-Transport-Security (HSTS) header in its administration section. This vulnerability may expose user data and interactions to potential attacks, as the lack of HSTS can permit man-in-the-middle attacks, undermining the application's overall security posture. It is crucial for users of HCL AppScan Enterprise to implement necessary security measures to safeguard their web applications.",HCL Software,"""hcl Appscan Enterprise """,7.5,HIGH,0.002199999988079071,false,,false,false,false,,,false,false,,2020-10-06T17:22:45.000Z,0
CVE-2019-4325,https://securityvulnerability.io/vulnerability/CVE-2019-4325,Cryptographic Vulnerability in HCL AppScan Enterprise Affects User Data Security,"HCL AppScan Enterprise utilizes a broken or risky cryptographic algorithm for storing REST API user details, which can potentially expose sensitive information to unauthorized access. This vulnerability threatens the integrity of user data within the application, emphasizing the need for improved cryptographic practices to enhance security.",HCL Software,"""hcl Appscan Enterprise """,5.3,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-10-06T17:18:43.000Z,0
CVE-2019-4323,https://securityvulnerability.io/vulnerability/CVE-2019-4323,Clickjacking Vulnerability in HCL AppScan Enterprise API Documentation,"The documentation of the HCL AppScan Enterprise advisory API is vulnerable to clickjacking attacks, which can enable malicious actors to embed and trick users into interacting with untrusted web content via misleading frames. This type of vulnerability poses significant risks, as attackers could potentially capture user credentials or perform unauthorized actions on behalf of users in the context of the affected application.",HCL Software,"""hcl Appscan Enterprise""",4.3,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-07-07T14:49:46.000Z,0
CVE-2019-4324,https://securityvulnerability.io/vulnerability/CVE-2019-4324,Cross-Site Scripting Vulnerability in HCL AppScan Enterprise,"HCL AppScan Enterprise is prone to a Cross-Site Scripting (XSS) vulnerability that arises when importing a specially crafted test policy. This flaw allows an attacker to inject malicious scripts into the application, which can lead to unauthorized access or manipulation of sensitive information within the application interface.",HCL Software,"""hcl Appscan Enterprise""",6.1,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-07-07T14:45:17.000Z,0
CVE-2019-4327,https://securityvulnerability.io/vulnerability/CVE-2019-4327,Hard-Coded Credential Vulnerability in HCL AppScan Enterprise,"HCL AppScan Enterprise is susceptible to a security issue due to the presence of hard-coded credentials. This vulnerability allows attackers to exploit the system, gaining unauthorized access to sensitive application data, including encrypted files. The use of such credentials significantly compromises the integrity and confidentiality of the application, emphasizing the importance of secure credential management practices.",HCL Software,"""hcl Appscan Enterprise Edition""",7.5,HIGH,0.0016799999866634607,false,,false,false,false,,,false,false,,2020-04-21T18:13:45.000Z,0