Primary

Context

HCL Aftermarket DPC Unrestricted File Upload Vulnerability Allowing Full Server Control

Vulnerability

A vulnerability allowing unrestricted file uploads has been identified in HCL Aftermarket DPC version 1.0.0. This vulnerability enables attackers to upload and execute malicious scripts, potentially gaining full control over the server.

Impact

Exploitation of this vulnerability could lead to unauthorized file uploads and execution of malicious scripts, allowing attackers to gain complete control over the server.

Remediation

Vulnerability remediated via backend development.

Added: Mar 26, 2026, 1:49 PM

Updated: Mar 26, 2026, 1:49 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.0

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.0

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL Aftermarket DPC Unrestricted File Upload Vulnerability Allowing Full Server Control

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating