4382 matches found
CVE-2023-48464
Adobe Experience Manager versions 6.5.18 and earlier are affected by a DOM-based XSS vulnerability. A low-privileged attacker can lure a user to a vulnerable page URL, causing malicious JavaScript to execute in the victim’s browser. CVSSv3.1 base score 5.4 (Medium) with network access and user in...
CVE-2023-48472
Summary : CVE-2023-48472 affects Adobe Experience Manager (AEM) 6.5.18 and earlier. The issue is a DOM-based Cross-site Scripting (XSS) vulnerability where a low-privileged attacker can lure a victim to a URL referencing a vulnerable page, causing malicious JavaScript to run in the victim’s brows...
CVE-2023-48483
CVE-2023-48483 affects Adobe Experience Manager (AEM) versions 6.5.18 and earlier. The issue is described as a DOM-based XSS vulnerability where a low-privileged attacker could lure a victim to a crafted URL, causing malicious JavaScript to execute in the victim’s browser. The vulnerability conte...
CVE-2023-48587 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48490 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48490
Adobe Experience Manager (AEM) 6.5.18 and earlier is affected by a DOM-based cross-site scripting (XSS) vulnerability. The issue allows a low-privileged attacker to lure a victim to a URL referencing a vulnerable page, causing malicious JavaScript to execute in the victim’s browser. Affected comp...
CVE-2023-48618
CVE-2023-48618 affects Adobe Experience Manager (AEM) 6.5.18 and earlier. It is a DOM-based XSS vulnerability where a low-privilege attacker can entice a victim to visit a crafted URL, potentially executing malicious JavaScript in the victim’s browser. CVSS indicates network access with low attac...
CVE-2023-48605 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48605
Affected product: Adobe Experience Manager (AEM) 6.5.x is vulnerable in versions 6.5.18 and earlier. Root cause: DOM-based XSS flaw allows a low-privileged attacker to lure a victim to a vulnerable page URL, enabling execution of malicious JavaScript in the victim’s browser. Impact: An attacker c...
CVE-2023-48459
Adobe Experience Manager 6.5.18 and earlier are affected by a DOM-based XSS in which a low-privileged attacker can entice a victim to a vulnerable URL, causing malicious JavaScript to execute in the victim’s browser. The issue stems from inadequate protection of the page structure, enabling cross...
CVE-2023-48459 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48445
CVE-2023-48445 affects Adobe Experience Manager 6.5.18 and earlier via a DOM-based XSS flaw: if a user visits a crafted URL on a vulnerable page, malicious JavaScript can execute in the victim’s browser. Consequence is typically user‑context script execution with low confidentiality/integrity imp...
CVE-2023-48539 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48471 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48471 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48458
Adobe Experience Manager 6.5.18 and earlier are affected by a DOM-based Cross-site Scripting (XSS) vulnerability. If a low-privilege attacker can lure a victim to a URL referencing a vulnerable page, malicious JavaScript may execute in the victim’s browser context. Affected product: Adobe Experie...
CVE-2023-48458 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48458 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48462
CVE-2023-48462 affects Adobe Experience Manager (AEM) 6.5.18 and earlier. It is a DOM-based XSS vulnerability where a low-privileged attacker can lure a user to a crafted URL, causing malicious JavaScript to execute in the victim’s browser. Impact is limited to client-side confidentiality/integri...
CVE-2023-48462 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...