Lucene search
K

5968 matches found

NVD
NVD
added 2020/06/12 4:15 p.m.13 views

CVE-2020-4049

In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes page. This does require an admin to upload the theme, and is low severity self-XSS. This has been patched in version...

3.5CVSS0.02805EPSS
Exploits0References8
OSV
OSV
added 2020/06/12 4:15 p.m.18 views

CVE-2020-4049

In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes page. This does require an admin to upload the theme, and is low severity self-XSS. This has been patched in version...

2.4CVSS6.5AI score
Exploits0References8
OSV
OSV
added 2020/06/12 4:15 p.m.2 views

UBUNTU-CVE-2020-4049

In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes page. This does require an admin to upload the theme, and is low severity self-XSS. This has been patched in version...

2.4CVSS6.6AI score0.02805EPSS
Exploits0References6
Cvelist
Cvelist
added 2020/06/12 4:0 p.m.30 views

CVE-2020-4049 Authenticated self-XSS via theme uploads in WordPress

In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes page. This does require an admin to upload the theme, and is low severity self-XSS. This has been patched in version...

2.4CVSS5.1AI score0.02805EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2020/06/12 4:0 p.m.28 views

CVE-2020-4049

In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes page. This does require an admin to upload the theme, and is low severity self-XSS. This has been patched in version...

3.5CVSS5.9AI score0.02805EPSS
Exploits0
OSV
OSV
added 2020/06/12 2:15 p.m.2 views

CVE-2020-9648

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS6.5AI score0.02441EPSS
Exploits0References1
NVD
NVD
added 2020/06/12 2:15 p.m.27 views

CVE-2020-9648

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS0.02441EPSS
Exploits0References1
NVD
NVD
added 2020/06/12 2:15 p.m.24 views

CVE-2020-9651

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting reflected vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS0.02441EPSS
Exploits0References1
OSV
OSV
added 2020/06/12 2:15 p.m.3 views

CVE-2020-9644

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting stored vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

5.4CVSS5.9AI score0.01763EPSS
Exploits0References1
NVD
NVD
added 2020/06/12 2:15 p.m.24 views

CVE-2020-9647

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting dom-based vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS0.02441EPSS
Exploits0References1
Prion
Prion
added 2020/06/12 2:15 p.m.20 views

Cross site scripting

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting dom-based vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

4.3CVSS6.1AI score0.02441EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/06/12 2:15 p.m.17 views

Cross site scripting

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting reflected vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

4.3CVSS6.1AI score0.02441EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/12 1:14 p.m.27 views

CVE-2020-9651

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting reflected vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.2AI score0.02441EPSS
Exploits0References1
EUVD
EUVD
added 2020/06/12 1:14 p.m.5 views

EUVD-2020-30437

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting reflected vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS6AI score0.02441EPSS
Exploits0References1
EUVD
EUVD
added 2020/06/12 1:14 p.m.5 views

EUVD-2020-30433

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting dom-based vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS6AI score0.02441EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/12 1:13 p.m.20 views

CVE-2020-9644

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting stored vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

5.9AI score0.01763EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/12 1:12 p.m.37 views

CVE-2020-9648

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.2AI score0.02441EPSS
Exploits0References1
EUVD
EUVD
added 2020/06/12 1:12 p.m.4 views

EUVD-2020-30434

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS6AI score0.02441EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/06/12 12:0 a.m.38 views

Adobe Experience Manager 6.0 < 6.5 Multiple Vulnerabilities (APSB20-31)

The version of Adobe Experience Manager installed on the remote host is prior to 6.5. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB20-31 advisory. - Adobe Experience Manager versions 6.5 and earlier have a blind server-side request forgery ssrf vulnerability...

7.5CVSS6.4AI score0.03294EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2020/06/11 8:17 a.m.3 views

Multiple vulnerabilities in Zenphoto

Overview Zenphoto is a content management system CMS. Zenphoto contains multiple vulnerabilities listed below. Cross-site Scripting CWE-79 - CVE-2020-5592 Code Injection CWE-94 - CVE-2020-5593 Tomohisa Maeda of Panasonic Corporation, Product Security Center reported this vulnerability to IPA...

8.8CVSS6.9AI score0.01166EPSS
Exploits0References8
Rows per page
Query Builder