CVE-2023-48498 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)

Adobe Experience Manager versions 6.5.18 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2023-82284)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

CVE-2023-38214

CVE-2023-38214 affects Adobe Experience Manager (AEM) 6.5.17 and earlier with a reflected XSS vulnerability. Scenario: a low-privileged attacker lures a user to a crafted URL referencing a vulnerable page, causing arbitrary JavaScript to execute in the victim’s browser. Exploitation requires user...

SugarCRM <= 6.5.16 XXE Vulnerability

SugarCRM is prone to an XML external entity XXE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...