Lucene search
K

3306 matches found

BDU FSTEC
BDU FSTEC
added 2024/06/21 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website’s structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code in the context of the victim’s browser...

5.5CVSS5.9AI score0.0051EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/21 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website’s structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code in the context of the victim’s browser...

5.5CVSS5.9AI score0.0051EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/21 12:0 a.m.5 views

The vulnerability of the PDF.js library is related to access to resources through incompatible types, allowing attackers to execute arbitrary JavaScript code.

The vulnerability of the PDF.js library is related to access to resources through incompatible types. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code remotely...

7.6CVSS8AI score0.72648EPSS
Exploits15References22Affected Software14
OSV
OSV
added 2024/06/14 2:0 p.m.36 views

RLSA-2024:2888 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.11.0. Security Fixes: firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsing mode CVE-2024-4767 firefox: Potential...

8.8CVSS8.5AI score0.72648EPSS
Exploits18References7
Cvelist
Cvelist
added 2024/06/14 12:6 p.m.46 views

CVE-2024-36459 Cross-Site Scripting Vulnerability in Symantec SiteMinder Web Agent

A CRLF cross-site scripting vulnerability has been identified in certain configurations of the SiteMinder Web Agent for IIS Web Server and SiteMinder Web Agent for Domino Web Server. As a result, an attacker can execute arbitrary Javascript code in a client browser...

8.4CVSS0.0042EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/14 12:0 a.m.4 views

PT-2024-27108 · Minthcm · Minthcm

Name of the Vulnerable Software and Affected Versions: MintHCM version 4.0.3 Description: A reflected Cross-site Scripting XSS attack can be achieved by a registered user, allowing the execution of arbitrary JavaScript code. Recommendations: For MintHCM version 4.0.3, at the moment, there is no...

6.1CVSS5.8AI score0.00301EPSS
Exploits1References5
CVE
CVE
added 2024/06/14 12:0 a.m.44 views

CVE-2024-36656

MintHCM 4.0.3 is affected by a reflected Cross-site Scripting (XSS) vulnerability in which a registered user can execute arbitrary JavaScript. The issue originates from MintHCM 4.0.3 and is described across multiple sources as enabling a registered user to inject and run JavaScript, leading to XS...

6.1CVSS6.6AI score0.00301EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/06/13 8:16 a.m.30 views

CVE-2024-36222

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically requires us...

5.4CVSS0.00448EPSS
Exploits0References1
NVD
NVD
added 2024/06/13 8:16 a.m.13 views

CVE-2024-36190

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically requires us...

5.4CVSS0.00717EPSS
Exploits0References1
NVD
NVD
added 2024/06/13 8:16 a.m.30 views

CVE-2024-36151

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue requires user...

5.4CVSS0.00717EPSS
Exploits0References1
OSV
OSV
added 2024/06/13 8:15 a.m.3 views

CVE-2024-26072

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically requires us...

5.4CVSS6.1AI score0.00549EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/13 7:53 a.m.19 views

CVE-2024-26037 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically...

5.4CVSS5.5AI score0.0051EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/13 7:53 a.m.26 views

CVE-2024-36224 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically...

5.4CVSS0.00313EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/13 7:53 a.m.26 views

CVE-2024-26072 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically requires us...

5.4CVSS0.00549EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 7:53 a.m.59 views

CVE-2024-26053

Adobe Experience Manager (AEM) versions 6.5.20 and earlier are documented to contain a DOM-based Cross-Site Scripting (XSS) vulnerability that could allow an attacker to execute arbitrary JavaScript in a victim’s browser. Exploitation requires user interaction (e.g., clicking a crafted link or su...

5.4CVSS5.5AI score0.00587EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/13 7:53 a.m.26 views

CVE-2024-36234 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically requires us...

5.4CVSS0.00313EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/13 7:53 a.m.20 views

CVE-2024-36181 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue requires user...

5.4CVSS5.5AI score0.00479EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 7:53 a.m.59 views

CVE-2024-36190

CVE-2024-36190 affects Adobe Experience Manager (AEM) versions ≤ 6.5.20. The issue is a DOM-based Cross-Site Scripting (XSS) vulnerability that allows an attacker to execute arbitrary JavaScript in the victim’s browser context, typically requiring user interaction (e.g., clicking a crafted link o...

5.4CVSS5.5AI score0.00717EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/13 7:53 a.m.25 views

CVE-2024-36231 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically...

5.4CVSS5.6AI score0.00462EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/13 7:52 a.m.25 views

CVE-2024-26058 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue requires user...

5.4CVSS0.0051EPSS
Exploits0References1
Rows per page
Query Builder