CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

10257 matches found

Vulnrichment•added 2026/03/11 12:23 a.m.•1 views

CVE-2026-27225 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1

ATTACKERKB•added 2026/03/11 12:23 a.m.•2 views

CVE-2026-27225

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References2

CVE•added 2026/03/11 12:23 a.m.•11 views

CVE-2026-27225

CVE-2026-27225 concerns Adobe Experience Manager (AEM) versions 6.5.23 and earlier, with a stored XSS vulnerability in form fields. The underlying issue is inadequate input sanitization/output encoding, allowing a low-privileged attacker to inject malicious JavaScript that may run in a victim’s b...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/03/11 12:23 a.m.•2 views

CVE-2026-27256

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References2

Cvelist•added 2026/03/11 12:23 a.m.•37 views

CVE-2026-27256 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00167EPSS

Exploits0References1

EUVD•added 2026/03/11 12:23 a.m.•3 views

EUVD-2026-11012

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1

CVE•added 2026/03/11 12:23 a.m.•10 views

CVE-2026-27256

CVE-2026-27256 affects Adobe Experience Manager 6.5.23 and earlier. It is a stored XSS in form fields, allowing a low-privileged attacker to inject JavaScript executed in victims’ browsers. Remediation: update to 6.5.24 or later (vendor advisories indicate fixes were released).

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/03/11 12:23 a.m.•1 views

CVE-2026-27256 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1

ATTACKERKB•added 2026/03/11 12:23 a.m.•2 views

CVE-2026-27260

This CVE ID was issued in error by its CVE Numbering Authority...

5.4CVSS5.8AI score0.0003EPSS

Exploits0References2

Cvelist•added 2026/03/11 12:23 a.m.•31 views

CVE-2026-27260

...

Cvelist•added 2026/03/11 12:23 a.m.•36 views

CVE-2026-27237 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00167EPSS

Exploits0References1

CVE•added 2026/03/11 12:23 a.m.•11 views

CVE-2026-27237

Adobe Experience Manager 6.5.23 and earlier are affected by a stored XSS in form field input due to insufficient sanitization/output encoding. A low-privileged attacker can inject JavaScript that executes in a victim’s browser when visiting the vulnerable page. CVSS 3.1 base score 5.4 (NORM, LOW ...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1Affected Software1

EUVD•added 2026/03/11 12:23 a.m.•6 views

EUVD-2026-11028

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1

CVE•added 2026/03/11 12:23 a.m.•11 views

CVE-2026-27265

Adobe Experience Manager (AEM) 6.5.23 and earlier are affected by a stored Cross‑Site Scripting (XSS) vulnerability in form fields. The underlying issue is insufficient input sanitization/output escaping, allowing a low‑privileged attacker to inject malicious JavaScript that may execute in a vict...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1Affected Software1

CVE•added 2026/03/11 12:23 a.m.•12 views

CVE-2026-27236

Adobe Experience Manager (AEM) 6.5.x is affected by a stored XSS in form fields due to insufficient input sanitization/output encoding. The vulnerability enables a low-privilege attacker to inject JavaScript that executes in a victim’s browser when visiting pages containing the vulnerable field. ...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1Affected Software1

CVE•added 2026/03/11 12:23 a.m.•16 views

CVE-2026-27233

CVE-2026-27233 concerns Adobe Experience Manager (AEM) 6.5.x up to 6.5.23. The issue is a stored Cross-Site Scripting (XSS) vulnerability in input processing of form fields, allowing a low-privileged attacker to inject JavaScript that could execute in a victim’s browser when loading the vulnerabl...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1Affected Software1

EUVD•added 2026/03/11 12:23 a.m.•2 views

EUVD-2026-10974

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1

ATTACKERKB•added 2026/03/11 12:23 a.m.•2 views

CVE-2026-27236

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References2

Vulnrichment•added 2026/03/11 12:23 a.m.•3 views

CVE-2026-27236 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1

ATTACKERKB•added 2026/03/11 12:23 a.m.•2 views

CVE-2026-27233

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by