Vulnerabilities > Hcltech > Appscan Source > 9.0.3.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-18 | CVE-2019-4388 | Cross-site Scripting vulnerability in Hcltech Appscan Source HCL AppScan Source 9.0.3.13 and earlier is susceptible to cross-site scripting (XSS) attacks by allowing users to embed arbitrary JavaScript code in the Web UI. | 3.5 |
| 2019-09-25 | CVE-2019-16188 | XXE vulnerability in Hcltech Appscan Source HCL AppScan Source before 9.03.13 is susceptible to XML External Entity (XXE) attacks in multiple locations. | 5.8 |