CVE-2024-26074 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36173

Adobe Experience Manager (AEM) versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing attacker-supplied JavaScript to run in a victim’s browser when visiting the page containing the field. The issue is cited across multipl...

CVE-2024-26060

CVE-2024-26060 affects Adobe Experience Manager (AEM) versions 6.5.20 and earlier. The vulnerability is a stored Cross‑Site Scripting (XSS) flaw in vulnerable form fields that allows an attacker to inject malicious JavaScript, which can execute in a victim’s browser when they visit a page contain...

CVE-2024-26083 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-26083

CVE-2024-26083 affects Adobe Experience Manager (AEM) 6.5.20 and earlier. The flaw is a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing malicious JavaScript to execute in a victim’s browser when loading a page with the affected field. CVSS v3.1 base score is 5....

CVE-2024-36186

Adobe Experience Manager (AEM) 6.5.20 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability (CVE-2024-36186) in vulnerable form fields, allowing injected JavaScript to run in a victim’s browser when viewing the page containing the field. The issue is addressed by Adobe thr...

CVE-2024-36215

Adobe Experience Manager CVE-2024-36215 affects AEM 6.5.20 and earlier, with a stored XSS vulnerability in vulnerable form fields that could allow injection of JavaScript executed in a victim’s browser. The issue arises from inadequate input validation in forms, enabling malicious scripts to run ...

CVE-2024-36179

CVE-2024-36179 affects Adobe Experience Manager (AEM) versions 6.5.20 and earlier, where a stored Cross-Site Scripting (XSS) vulnerability exists in vulnerable form fields. An attacker can inject malicious JavaScript, which may execute in a victim’s browser when visiting a page containing the pay...

CVE-2024-26092

Adobe Experience Manager (AEM) v6.5.20 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. CVE-2024-26092 is documented with a MEDIUM severity (CVSS v3.1: 5.4) and requires user interaction for exploitation, with the attack vector considered net...

CVE-2024-26095

Summary of CVE-2024-26095 (Adobe Experience Manager) : AEM 6.5.20 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing an attacker to inject malicious JavaScript that executes in a victim’s browser when loading the affected page. The do...

CVE-2024-36189 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36143 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36188 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36170

Adobe Experience Manager (AEM) up to version 6.5.20 is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields due to improper input validation. The CVE-2024-36170 issue can allow an attacker to inject malicious JavaScript that executes in a user’s browser when vis...

CVE-2024-26078

Adobe Experience Manager (AEM) 6.5.20 and earlier contains a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing attacker-supplied scripts to execute in a victim’s browser. The issue is explicitly tied to CVE-2024-26078 and is cited alongside related XSS CVEs in th...

CVE-2024-20784 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36194

Adobe Experience Manager (AEM) v6.5.20 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. The issue allows injection of malicious JavaScript, which could execute in a victim’s browser when loading the page with the vulnerable field (root cause:...

CVE-2024-34119

Adobe Experience Manager (AEM) versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. The issue allows injection of malicious JavaScript that can execute in a victim’s browser when the page containing the field is loaded or interac...

CVE-2024-26070

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing attacker-supplied JavaScript to execute in a victim’s browser when visiting the page containing the field. Connected sources confirm the produ...

CVE-2024-26036

Adobe Experience Manager (AEM) 6.5.20 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields (CVE-2024-26036). An attacker could inject malicious JavaScript that executes in a victim’s browser when visiting a page containing the vulnerable field. AE...