5.4 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): REQUIRED
- Scope (S): CHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): LOW
- Availability impact (A): NONE
HCL Connections is vulnerable to cross-site scripting (XSS)
HCL Connections is vulnerable to a cross-site scripting attack where an attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user which leads to executing malicious script code. This may allow the attacker steal cookie-based authentication credentials and comprise user's account then launch other attacks.
Affected products
- ==8
Matching in nixpkgs
pkgs.gnome-connections
Remote desktop client for the GNOME desktop environment
pkgs.python312Packages.hyper-connections
Module to make multiple residual streams
pkgs.python313Packages.hyper-connections
Module to make multiple residual streams
pkgs.python314Packages.hyper-connections
Module to make multiple residual streams
pkgs.sbclPackages.asdf-system-connections
None
-
nixos-unstable 20170124-git
- nixpkgs-unstable 20170124-git
- nixos-unstable-small 20170124-git
-
nixos-25.11 20170124-git
- nixos-25.11-small 20170124-git
- nixpkgs-25.11-darwin 20170124-git
pkgs.pkgsRocm.python3Packages.hyper-connections
Module to make multiple residual streams
pkgs.haskellPackages.amazonka-codestar-connections
Amazon CodeStar connections SDK
-
nixos-unstable 2.0-unstable-2025-04-16
- nixpkgs-unstable 2.0-unstable-2025-04-16
- nixos-unstable-small 2.0-unstable-2025-04-16
-
nixos-25.11 2.0-unstable-2025-04-16
- nixos-25.11-small 2.0-unstable-2025-04-16
- nixpkgs-25.11-darwin 2.0-unstable-2025-04-16
pkgs.python312Packages.mypy-boto3-codestar-connections
Type annotations for boto3 codestar-connections
-
nixos-25.11 boto3-codestar-connections-1.41.0
- nixos-25.11-small boto3-codestar-connections-1.41.0
- nixpkgs-25.11-darwin boto3-codestar-connections-1.41.0
pkgs.python313Packages.mypy-boto3-codestar-connections
Type annotations for boto3 codestar-connections
-
nixos-unstable boto3-codestar-connections-1.42.3
- nixpkgs-unstable boto3-codestar-connections-1.42.3
- nixos-unstable-small boto3-codestar-connections-1.42.3
-
nixos-25.11 boto3-codestar-connections-1.41.0
- nixos-25.11-small boto3-codestar-connections-1.41.0
- nixpkgs-25.11-darwin boto3-codestar-connections-1.41.0
pkgs.python314Packages.mypy-boto3-codestar-connections
Type annotations for boto3 codestar-connections
-
nixos-unstable boto3-codestar-connections-1.42.3
- nixpkgs-unstable boto3-codestar-connections-1.42.3
- nixos-unstable-small boto3-codestar-connections-1.42.3
pkgs.python313Packages.types-aiobotocore-codeconnections
Type annotations for aiobotocore codeconnections
pkgs.python312Packages.types-aiobotocore-codestar-connections
Type annotations for aiobotocore codestar-connections
Package maintainers
-
@jtojnar Jan Tojnar <jtojnar@gmail.com>
-
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
-
@bobby285271 Bobby Rong <rjl931189261@126.com>
-
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@mbalatsko Maksym Balatsko <mbalatsko@gmail.com>
-
@nagy Daniel Nagy <danielnagy@posteo.de>
-
@Uthar Kasper Gałkowski <galkowskikasper@gmail.com>
-
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
-
@hraban Hraban Luyat <hraban@0brg.net>
-
@lukego Luke Gorrie <luke@snabb.co>