3 matches found
Adobe Experience Manager 6.2.x <= 6.2 SP1-CFP20 / 6.3.x <= 6.3.3.8 / 6.4.x < 6.4.8.2 / 6.5.x < 6.5.6.0 (APSB20-56)
The version of Adobe Experience Manager installed on the remote host is 6.2.x through 6.2 SP1-SFP20, 6.3.x through 6.3.3.8, 6.4.x prior to 6.4.8.2, or 6.5.x prior to 6.5.6.0. It is, therefore, affected by multiple vulnerabilities: - Adobe Experience Manager executes with unnecessary privileges,...
CVE-2020-9743 HTML injection in AEM's content editor component
AEM versions 6.5.5.0 and below, 6.4.8.1 and below, 6.3.3.8 and below and 6.2 SP1-CFP20 and below are affected by an HTML injection vulnerability in the content editor component that allows unauthenticated users to craft an HTTP request that includes arbitrary HTML code in a parameter value. An...
CVE-2020-9743
CVE-2020-9743 is an HTML injection vulnerability in Adobe Experience Manager’s content editor. Affected are AEM 6.5.5.0 and earlier, 6.4.8.1 and earlier, 6.3.3.8 and earlier, and 6.2 SP1-CFP20 and earlier. The issue allows unauthenticated users to craft a request that injects arbitrary HTML, enab...