Lucene search
China National Vulnerability DatabaseCNVD-2023-99939HistoryDec 22, 2023 - 12:00 a.m.
Adobe Experience Manager cross-site scripting vulnerability (CNVD-2023-9993953)
2023-12-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
adobe experience manager
aem
cross-site scripting
vulnerability
american company odobie
filtering
escaping
user-supplied data
attacker
web script
html
payload
cnvd-2023-9993953
Adobe Experience Manager (AEM) is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie (Adobe). The program supports mobile content management, marketing and sales campaign management and multi-site management. A cross-site scripting vulnerability exists in Adobe Experience Manager 6.5.18 and prior versions, which stems from the application’s lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to execute arbitrary web script or HTML by injecting a crafted payload.
| CPE | Name | Operator | Version |
|---|---|---|---|
| adobe adobe experience manager | le | 6.5.18 |
Related
prion
prion
Cross site scripting
2023-12-20 14:15:00
cvelist
cvelist
nvd
nvd
CVE-2023-51457
2023-12-20 14:15:21
cve
cve
CVE-2023-51457
2023-12-20 14:15:21
adobe
adobe
APSB23-72 : Security update available for Adobe Experience Manager
2023-12-12 00:00:00