CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2023/12/15 10:16 a.m.•23 views

CVE-2023-48477 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

CVE•added 2023/12/15 10:16 a.m.•42 views

CVE-2023-48525

CVE-2023-48525 affects Adobe Experience Manager (AEM) versions 6.5.18 and earlier. The issue is a DOM-based XSS vulnerability where a low-privilege attacker may entice a victim to visit a vulnerable page URL, enabling malicious JavaScript to execute in the victim’s browser. Impact is client-side;...

5.4CVSS5.2AI score0.00562EPSS

Cvelist•added 2023/12/15 10:16 a.m.•22 views

CVE-2023-48525 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

5.4CVSS5.4AI score0.00562EPSS

Cvelist•added 2023/12/15 10:16 a.m.•23 views

CVE-2023-48470 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Vulnrichment•added 2023/12/15 10:16 a.m.•17 views

CVE-2023-48467 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

5.4CVSS5.5AI score0.00597EPSS

CVE•added 2023/12/15 10:16 a.m.•40 views

CVE-2023-48467

Adobe Experience Manager (AEM) versions 6.5.18 and earlier are affected by a DOM-based XSS vulnerability that can execute malicious JavaScript in the victim’s browser when a user visits a crafted URL referencing a vulnerable page. The CVE is documented with a Medium severity (CVSS 3.1: 5.4) and r...

CVE•added 2023/12/15 10:16 a.m.•47 views

CVE-2023-48541

Adobe Experience Manager (AEM) 6.5.18 and earlier is affected by a DOM-based Cross-site Scripting (XSS) vulnerability. A low-privilege attacker can lure a victim to a URL referencing a vulnerable page, causing arbitrary JavaScript to execute in the victim’s browser. Documented impact per NVD: mal...

5.4CVSS5.6AI score0.00597EPSS

Cvelist•added 2023/12/15 10:16 a.m.•22 views

CVE-2023-48541 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Cvelist•added 2023/12/15 10:16 a.m.•22 views

CVE-2023-48556 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

CVE•added 2023/12/15 10:16 a.m.•42 views

CVE-2023-48556

CVE-2023-48556 affects Adobe Experience Manager 6.5.18 and earlier. A DOM-based XSS could be triggered when a user is induced to visit a vulnerable page URL, allowing malicious JavaScript to execute in the victim’s browser. The advisory and related sources indicate remediation via updates to a fi...

CVE•added 2023/12/15 10:16 a.m.•40 views

CVE-2023-48461

Adobe Experience Manager (AEM) 6.5.18 and earlier are affected by a DOM-based XSS vulnerability (CVE-2023-48461). The issue allows a low-privileged attacker who lures a victim to a vulnerable URL to execute malicious JavaScript in the victim’s browser, within the context of the page. The vulnerab...

CVE•added 2023/12/15 10:16 a.m.•37 views

CVE-2023-48480

CVE-2023-48480 affects Adobe Experience Manager (AEM) 6.5.18 and earlier. It is a DOM-based XSS vulnerability in vulnerable pages that enables a low-privileged attacker to cause malicious JavaScript to run in a victim’s browser when the victim visits a crafted URL referencing the vulnerable page....

Cvelist•added 2023/12/15 10:16 a.m.•19 views

CVE-2023-48480 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

CVE•added 2023/12/15 10:16 a.m.•39 views

CVE-2023-48478

CVE-2023-48478 affects Adobe Experience Manager up to version 6.5.18. It is a DOM-based XSS: a low-privileged attacker can entice a victim to visit a crafted URL referencing a vulnerable page, causing malicious JavaScript to run in the victim’s browser. The CVSSv3.1 vector (AV:N/AC:L/PR:L/UI:R/S:...

Cvelist•added 2023/12/15 10:16 a.m.•25 views

CVE-2023-48478 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

CVE•added 2023/12/15 10:16 a.m.•50 views

CVE-2023-48493

Adobe Experience Manager versions 6.5.18 and earlier are affected by a DOM-based XSS vulnerability in which an attacker can induce a victim to visit a URL referencing a vulnerable page, causing malicious JavaScript to execute in the victim’s browser. Affected component is the web-page rendering l...

5.4CVSS5.6AI score0.00562EPSS

CVE•added 2023/12/15 10:16 a.m.•38 views

CVE-2023-48486

CVE-2023-48486 affects Adobe Experience Manager (AEM) 6.5.18 and earlier. The issue is a DOM-based XSS in vulnerable pages where a low-privileged attacker can lure a victim to a crafted URL, allowing execution of malicious JavaScript in the victim’s browser. Documented impact is user interaction ...

5.4CVSS5.6AI score0.00562EPSS

Cvelist•added 2023/12/15 10:16 a.m.•20 views

CVE-2023-48450 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

CVE•added 2023/12/15 10:16 a.m.•41 views

CVE-2023-48450

CVE-2023-48450 concerns Adobe Experience Manager (AEM) versions 6.5.18 and earlier. The vulnerability is a DOM-based Cross‑Site Scripting (XSS) flaw in which an attacker can lure a victim to a URL referencing a vulnerable page, causing malicious JavaScript to run in the victim’s browser. Root cau...