CVE-2020-14274
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-14274
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Information disclosure vulnerability in HCL Commerce 9.0.1.9 through 9.0.1.14 and 9.1 through 9.1.4 could allow a remote attacker to obtain user personal data via unknown vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
HCL Commerce 信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
HCL Commerce是印度HCL公司的一款用于电子商务的软件平台框架。该软件在可定制的集成软件包中包括营销,销售,客户和订单处理功能。它是一个统一的平台,提供了直接与消费者,与企业,通过渠道合作伙伴间接开展业务或同时开展所有业务的能力。 HCL Commerce 存在安全漏洞,攻击者可利用该漏洞获取个人信息。以下产品及版本受到影响:HCL Commerce 9.0.1.9至9.0.1.14、HCL Commerce 9.1至9.1.4。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | HCL Commerce | v9.0.1.9 through v9.0.1.14 | - |
II. Public POCs for CVE-2020-14274
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-14274
请登录查看更多情报信息。
- https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0086183x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2020-14274
Same Patch Batch · n/a · 2021-01-12 · 32 CVEs total
| CVE-2020-35459 | Clusterlabs Crmsh 安全漏洞 | |
| CVE-2021-23927 | Open-xchange OX App Suite 代码问题漏洞 | |
| CVE-2021-23928 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23929 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23930 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23931 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23932 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23933 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23934 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23935 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2021-23936 | Open-xchange OX App Suite 跨站脚本漏洞 | |
| CVE-2020-36190 | RailsAdmin 跨站脚本漏洞 | |
| CVE-2021-3134 | 北京坤豆 Mubu 授权问题漏洞 | |
| CVE-2021-3133 | WordPress Elementor Contact Form DB plugin 跨站请求伪造漏洞 | |
| CVE-2020-13116 | Opentext Carbonite 跨站脚本漏洞 | |
| CVE-2020-25657 | m2crypto 安全漏洞 | |
| CVE-2020-27637 | R Cran 路径遍历漏洞 | |
| CVE-2020-14275 | HCL Commerce 安全漏洞 | |
| CVE-2020-35458 | ClusterLabs Hawk 代码注入漏洞 | |
| CVE-2020-26713 | REDCap 跨站脚本漏洞 |
Showing top 20 of 32 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: HCL Commerce
- CVE-2023-37532
A path traversal vulnerability affects HCL Commerce - CVE-2022-38656
HCL Commerce, when using Elasticsearch, could be affected by - CVE-2021-27785
HCL Commerce could allow a local attacker to obtain sensitiv - CVE-2021-27751
HCL Commerce is affected by an Insufficient Session Expirati - CVE-2020-14275
HCL Commerce 安全漏洞
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2020-14274
No comments yet