Lucene search
+L

623 matches found

Vulnrichment
Vulnrichment
added 2022/09/16 5:45 p.m.5 views

CVE-2022-30680 AEM Reflected XSS Arbitrary code execution

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...

5.4CVSS5AI score0.00553EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/16 5:45 p.m.25 views

CVE-2022-30685 AEM Reflected XSS Arbitrary code execution

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...

5.4CVSS5.9AI score0.00543EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/16 5:45 p.m.9 views

CVE-2022-30685 AEM Reflected XSS Arbitrary code execution

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...

5.4CVSS5AI score0.00543EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/16 5:45 p.m.26 views

CVE-2022-30678 AEM Reflected XSS Arbitrary code execution

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...

5.4CVSS5.9AI score0.00553EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/16 5:45 p.m.5 views

CVE-2022-30678 AEM Reflected XSS Arbitrary code execution

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...

5.4CVSS5AI score0.00553EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/16 5:45 p.m.6 views

CVE-2022-30683 AEM Violation of Secure Design Principles Security feature bypass

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a Violation of Secure Design Principles vulnerability that could lead to bypass the security feature of the encryption mechanism in the backend . An attacker could leverage this vulnerability to decrypt secrets, however, this i...

5.3CVSS5AI score0.00635EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/16 5:45 p.m.30 views

CVE-2022-30683 AEM Violation of Secure Design Principles Security feature bypass

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a Violation of Secure Design Principles vulnerability that could lead to bypass the security feature of the encryption mechanism in the backend . An attacker could leverage this vulnerability to decrypt secrets, however, this i...

5.3CVSS6.4AI score0.00635EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/16 5:45 p.m.7 views

CVE-2022-30677 AEM Reflected XSS Arbitrary code execution

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...

5.4CVSS5AI score0.00553EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/16 5:45 p.m.25 views

CVE-2022-30677 AEM Reflected XSS Arbitrary code execution

Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...

5.4CVSS5.9AI score0.00553EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/09/13 8:15 p.m.4 views

CVE-2022-32244

Under certain conditions an attacker authenticated as a CMS administrator access the BOE Commentary database and retrieve non-personal system data, modify system data but can't make the system unavailable. This needs the attacker to have high privilege access to the same physical/logical network ...

5.2CVSS5.4AI score0.00457EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/09/13 8:15 p.m.30 views

CVE-2022-32244

Under certain conditions an attacker authenticated as a CMS administrator access the BOE Commentary database and retrieve non-personal system data, modify system data but can't make the system unavailable. This needs the attacker to have high privilege access to the same physical/logical network ...

5.2CVSS0.00457EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/13 7:24 p.m.39 views

CVE-2022-32244

Under certain conditions an attacker authenticated as a CMS administrator access the BOE Commentary database and retrieve non-personal system data, modify system data but can't make the system unavailable. This needs the attacker to have high privilege access to the same physical/logical network ...

6.2AI score0.00457EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.4 views

PT-2022-6387 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.13.0 and earlier Description: The issue is a reflected Cross-Site Scripting XSS vulnerability. If an attacker convinces a victim to visit a URL referencing a vulnerable page, malicious JavaScript content...

5.5CVSS5.1AI score0.00515EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.6 views

PT-2022-21175 · Sap Se +1 · Sap Businessobjects Business Intelligence Platform +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue allows an attacker with high privilege access and authenticated as a CMS administrator to access and modify system data in the BOE Commentary database. This can be done under...

5.2CVSS4.8AI score0.00457EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.2 views

PT-2022-5046 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.13.0 and earlier Description: The issue is related to a reflected Cross-Site Scripting XSS vulnerability. An attacker can exploit this by convincing a victim to visit a URL referencing a vulnerable page,...

5.8CVSS5.4AI score0.00553EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.4 views

PT-2022-5056 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.13.0 and earlier Description: The issue is related to a reflected Cross-Site Scripting XSS vulnerability. An attacker can exploit this by convincing a victim to visit a URL referencing a vulnerable page,...

5.8CVSS5.4AI score0.00553EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.5 views

PT-2022-5059 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.13.0 and earlier Description: The issue is related to the lack of protection of the web page structure in Adobe Experience Manager, allowing a remote attacker to conduct cross-site scripting attacks using...

6.4CVSS5.2AI score0.00543EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.2 views

PT-2022-5043 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.13.0 and earlier Description: The issue is related to a reflected Cross-Site Scripting XSS vulnerability. If an attacker convinces a victim to visit a URL referencing a vulnerable page, malicious JavaScri...

6.4CVSS5.2AI score0.00543EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.5 views

PT-2022-5058 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.13.0 and earlier Description: The issue is related to a reflected Cross-Site Scripting XSS vulnerability. If an attacker convinces a victim to visit a URL referencing a vulnerable page, malicious JavaScri...

5.8CVSS5.2AI score0.00543EPSS
Exploits0References4
OSV
OSV
added 2022/09/01 12:0 a.m.30 views

ASB-A-219808546

In the SEPolicy configuration of system apps, there is a possible access to the 'ip' utility due to an insecure default value. This could lead to local information disclosure of network data with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.2AI score0.00092EPSS
Exploits0References2
Rows per page
Query Builder