Lucene search
K

37 matches found

Cvelist
Cvelist
added 2026/06/09 4:48 p.m.30 views

CVE-2026-47990 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS0.00224EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 4:48 p.m.6 views

CVE-2026-48265 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

5.4CVSS5.5AI score0.00283EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.11 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager is a content management solution developed by Adobe Inc. in the United States. It can be used to build websites, mobile applications, and forms. This solution supports mobile content management, marketing and sales activity management, and multi-site management, among oth...

5.4CVSS5.1AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/11 3:31 a.m.5 views

EUVD-2026-11023

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.0003EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/11 12:23 a.m.2 views

CVE-2026-27237

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References2
CVE
CVE
added 2026/03/11 12:23 a.m.12 views

CVE-2026-27248

Adobe Experience Manager (AEM) 6.5.23 and earlier are affected by a stored XSS in form field input. The vulnerability stems from insufficient input sanitization/output encoding, allowing low-privileged attackers to inject JavaScript that executes in a victim’s browser when visiting pages containi...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.8 views

PT-2026-24516

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.10 views

PT-2026-21358

Name of the Vulnerable Software and Affected Versions Swiper versions 6.5.1 through 12.1.1 Description Swiper is a free and mobile touch slider with hardware accelerated transitions and native behavior. A prototype pollution issue exists in the shared/utils.mjs file, specifically at line 94, wher...

9.4CVSS5.8AI score0.00397EPSS
Exploits2References16
RedhatCVE
RedhatCVE
added 2025/12/11 7:1 p.m.8 views

CVE-2025-64615

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.5AI score0.00205EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/10 9:31 p.m.3 views

EUVD-2025-202509

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5AI score0.00205EPSS
Exploits0References2
OSV
OSV
added 2025/12/10 7:16 p.m.3 views

CVE-2025-64620

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/10 6:24 p.m.3 views

CVE-2025-64875 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.1AI score0.00167EPSS
Exploits0References1
CVE
CVE
added 2025/12/10 6:23 p.m.19 views

CVE-2025-64791

CVE-2025-64791 affects Adobe Experience Manager (AEM) 6.5.23 and earlier. A stored Cross-Site Scripting (XSS) flaw allows a low-privilege attacker to inject malicious scripts into vulnerable form fields, with malicious JavaScript potentially executing in a victim’s browser when visiting the affec...

5.4CVSS5.1AI score0.00205EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/12/10 6:23 p.m.17 views

CVE-2025-64799

Adobe Experience Manager (AEM) 6.5.23 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. A low-privileged attacker can inject JavaScript, which may execute in a victim’s browser when visiting the page containing the vulnerable field. Remediatio...

5.4CVSS5.1AI score0.00205EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/12/10 6:22 p.m.14 views

CVE-2025-64614

Summary of CVE-2025-64614 and related disclosures : Adobe Experience Manager (AEM) versions 6.5.23 and earlier are affected by a stored cross-site scripting (XSS) vulnerability in vulnerable form fields. A low-privilege attacker can inject malicious JavaScript into these fields, which may be exec...

5.4CVSS5.1AI score0.00205EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.3 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The solution supports mobile content management, marketing and sales campaign management, and multi-site management. A...

5.4CVSS5.8AI score0.00205EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.2 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS5.6AI score0.003EPSS
Exploits0References2
OSV
OSV
added 2024/12/10 10:15 p.m.1 views

CVE-2024-53960

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2024/12/10 10:15 p.m.2 views

CVE-2024-52860

Adobe Experience Manager versions 6.5.21 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability that could be exploited by an attacker to execute arbitrary code in the context of the victim's browser session. By manipulating a DOM element through a crafted URL or user inpu...

5.4CVSS6AI score0.00737EPSS
Exploits0References1
OSV
OSV
added 2024/12/10 10:15 p.m.4 views

CVE-2024-52840

Adobe Experience Manager versions 6.5.21 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability that could be exploited by an attacker to execute arbitrary code in the context of the victim's browser session. By manipulating a DOM element through a crafted URL or user inpu...

5.4CVSS6AI score0.00877EPSS
Exploits0References1
Rows per page
Query Builder