CVE-2025-62320
HTML Injection in Web Application Causes Unintended Browser Requests
Publication date: 2026-03-17
Last updated on: 2026-03-17
Assigner: HCL Software
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an HTML Injection issue that occurs when a web application does not properly validate or sanitize user input before displaying it on a webpage.
An attacker can exploit this by inserting malicious or unwanted HTML code into the page.
When a user's browser loads the affected page, it may automatically interact with external resources included in the injected HTML, potentially causing unexpected requests from the user's browser.
How can this vulnerability impact me? :
[{'type': 'paragraph', 'content': "This vulnerability can lead to unexpected interactions between the user's browser and external servers due to the injected HTML."}, {'type': 'paragraph', 'content': 'Such interactions may result in data exfiltration or unauthorized data exposure to external servers.'}, {'type': 'paragraph', 'content': 'It may also cause security risks such as privacy breaches or manipulation of the web page content viewed by users.'}] [1]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
[{'type': 'paragraph', 'content': 'This vulnerability involves HTML Injection where unwanted HTML code is inserted into a webpage, causing the browser to make unexpected external requests.'}, {'type': 'paragraph', 'content': 'To detect this vulnerability on your system or network, you should monitor web application inputs and outputs for suspicious or unexpected HTML content.'}, {'type': 'paragraph', 'content': 'You can use network monitoring tools to detect unusual outbound requests from browsers that may indicate exploitation.'}, {'type': 'list_item', 'content': 'Use web proxy tools like Burp Suite or OWASP ZAP to intercept and analyze HTTP requests and responses for injected HTML.'}, {'type': 'list_item', 'content': "Run commands such as 'curl' or 'wget' to fetch web pages and inspect the HTML content for unexpected or malicious code."}, {'type': 'list_item', 'content': 'Use browser developer tools to inspect the DOM and network activity for unexpected external resource requests.'}] [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include properly validating and sanitizing all user inputs before displaying them on web pages to prevent HTML Injection.
Implement Content Security Policy (CSP) headers to restrict the loading of external resources and reduce the impact of injected HTML.
Update the affected product with any patches or fixes provided by the vendor as soon as they become available.
Monitor web application logs and network traffic for signs of exploitation attempts.