6726 matches found
CVE-2025-46908
Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...
CVE-2025-46848
Adobe Experience Manager (AEM) 6.5.22 and earlier is affected by a stored XSS vulnerability in vulnerable form fields (CVE-2025-46848). The issue allows a low-privileged attacker to inject malicious scripts, which may execute in a user’s browser when visiting a page containing the affected field....
CVE-2025-47078 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...
CVE-2024-37395
A stored cross-site scripting XSS vulnerability in the Public Survey function of REDCap 13.1.9 allows authenticated users to execute arbitrary web script or HTML by injecting a crafted payload into the 'Survey Title' and 'Survey Instructions' fields. This vulnerability could be exploited by...
firefox: thunderbird: Error handling for script execution was incorrectly isolated from web content
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Error handling for script execution is incorrectly isolated from web content, which could allow cross-origin leak attacks...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution from Adobe. A cross-site scripting vulnerability exists in Adobe Experience Manager, which stems from the vulnerability of form fields to stored cross-site scripting attacks. An attacker can exploit the vulnerability to cause...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution from Adobe. A cross-site scripting vulnerability exists in Adobe Experience Manager, which stems from the vulnerability of form fields to stored cross-site scripting attacks. An attacker can exploit the vulnerability to cause...
PT-2025-25110 · Adobe · Experience Manager
Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.22 and earlier Description: A stored Cross-Site Scripting XSS issue affects the software, allowing an attacker with limited privileges to inject malicious scripts into vulnerable form fields. This could...
CVE-2024-37394
CVE-2024-37394 (REDCap) : A stored XSS in REDCap 13.1.9 affects the Project Dashboards, allowing authenticated users to inject payloads into the Dashboard title and content. Exploitation leads to execution of malicious scripts when the dashboard is viewed. Red Hat CVE records mirror this issue fo...
GeoServer 安全漏洞
GeoServer is GeoServer open source an open source software server written in Java. It allows users to share and edit geospatial data. A security vulnerability exists in GeoServer that originates from malicious Jiffle script execution and could lead to a denial of service attack...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution from Adobe. A cross-site scripting vulnerability exists in Adobe Experience Manager, which stems from the vulnerability of form fields to stored cross-site scripting attacks. An attacker can exploit the vulnerability to cause...
Adobe Experience Manager(AEM) 跨站脚本漏洞
Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...
CVE-2024-37396
A stored cross-site scripting XSS vulnerability in the Calendar function of REDCap 13.1.9 allows authenticated users to execute arbitrary web script or HTML by injecting a crafted payload into the 'Notes' field of a calendar event. This could lead to the execution of malicious scripts when the...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution from Adobe. A cross-site scripting vulnerability exists in Adobe Experience Manager, which stems from the vulnerability of form fields to stored cross-site scripting attacks. An attacker can exploit the vulnerability to cause...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution CMS from Adobe for building websites, mobile apps and managing digital assets, while supporting cross-channel content delivery and the creation of personalized digital experiences. A cross-site scripting vulnerability exists ...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution CMS from Adobe for building websites, mobile apps and managing digital assets, while supporting cross-channel content delivery and the creation of personalized digital experiences. A cross-site scripting vulnerability exists ...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A securit...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A securit...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution CMS from Adobe for building websites, mobile apps and managing digital assets, while supporting cross-channel content delivery and the creation of personalized digital experiences. A cross-site scripting vulnerability exists ...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a comprehensive content management solution CMS from Adobe for building websites, mobile apps and managing digital assets, while supporting cross-channel content delivery and the creation of personalized digital experiences. A cross-site scripting vulnerability exists ...