HCL iNotes is susceptible to a link to non-existent domain vulnerability. An attacker could use this vulnerability to trick a user into supplying sensitive information such as username, password, credit card number, etc.
A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Hcl_inotes | Hcltech | 9.0.1 (including) | 9.0.1 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_10 (including) | 9.0.1-fixpack_10 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_3 (including) | 9.0.1-fixpack_3 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_4 (including) | 9.0.1-fixpack_4 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_5 (including) | 9.0.1-fixpack_5 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_6 (including) | 9.0.1-fixpack_6 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_7 (including) | 9.0.1-fixpack_7 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_8 (including) | 9.0.1-fixpack_8 (including) |
Hcl_inotes | Hcltech | 9.0.1-fixpack_9 (including) | 9.0.1-fixpack_9 (including) |
Hcl_inotes | Hcltech | 10.0 (including) | 10.0 (including) |
Hcl_inotes | Hcltech | 10.0.1 (including) | 10.0.1 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_1 (including) | 10.0.1-fixpack_1 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_2 (including) | 10.0.1-fixpack_2 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_3 (including) | 10.0.1-fixpack_3 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_4 (including) | 10.0.1-fixpack_4 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_5 (including) | 10.0.1-fixpack_5 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_6 (including) | 10.0.1-fixpack_6 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_7 (including) | 10.0.1-fixpack_7 (including) |
Hcl_inotes | Hcltech | 10.0.1-fixpack_8 (including) | 10.0.1-fixpack_8 (including) |
Hcl_inotes | Hcltech | 11.0 (including) | 11.0 (including) |
Hcl_inotes | Hcltech | 11.0.1 (including) | 11.0.1 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack_1 (including) | 11.0.1-fixpack_1 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack_2 (including) | 11.0.1-fixpack_2 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack_3 (including) | 11.0.1-fixpack_3 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack_4 (including) | 11.0.1-fixpack_4 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack_5 (including) | 11.0.1-fixpack_5 (including) |
Hcl_inotes | Hcltech | 12.0 (including) | 12.0 (including) |
Hcl_inotes | Hcltech | 12.0.1 (including) | 12.0.1 (including) |
Hcl_inotes | Hcltech | 12.0.1-fixpack_1 (including) | 12.0.1-fixpack_1 (including) |