CVE-2022-38653 Information

Description

In HCL Digital Experience customized XSS payload can be constructed such that it is served in the application unencoded.

Reference

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102141