Stored XSS Vulnerability in HCL Unica Marketing Operations
CVE-2024-42210
7.6HIGH
What is CVE-2024-42210?
A stored cross-site scripting (XSS) vulnerability exists in HCL Unica Marketing Operations versions 12.1.8 and below. This type of vulnerability allows attackers to inject malicious scripts that are stored on the server and executed within the user's browser, potentially compromising sensitive information and user accounts. The vulnerability occurs when the application accepts untrusted data without proper sanitization, making it crucial for users to implement necessary security measures to mitigate the risks involved.
Affected Version(s)
Unica Marketing Operations (Plan) <= 12.1.8