Lucene search
K

85 matches found

Vulnrichment
Vulnrichment
added 2026/06/13 4:17 a.m.9 views

CVE-2026-11769 Operator - Namespaced User Path Traversal

We have released version 5.24.0 of the Grafana Operator. This patch includes a MEDIUM severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templating...

6.4CVSS6.1AI score0.00361EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:9 p.m.3 views

CVE-2026-27253

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:9 p.m.4 views

CVE-2026-27247

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/11 3:31 a.m.6 views

EUVD-2026-11018

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.0003EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/11 3:31 a.m.6 views

EUVD-2026-10969

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.8AI score0.00205EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/11 3:31 a.m.8 views

EUVD-2026-10978

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References2
OSV
OSV
added 2026/03/11 1:16 a.m.4 views

CVE-2026-27266

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.7AI score0.00167EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 1:16 a.m.8 views

CVE-2026-27252

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00167EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 1:16 a.m.5 views

CVE-2026-27237

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00167EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 1:16 a.m.5 views

CVE-2026-27228

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00205EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 1:16 a.m.6 views

CVE-2026-27223

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS0.00167EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 12:23 a.m.7 views

CVE-2026-27241

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References2
CVE
CVE
added 2026/03/11 12:23 a.m.18 views

CVE-2026-27255

Adobe Experience Manager 6.5.23 and earlier are affected by a stored XSS vulnerability in vulnerable form fields. A low-privilege attacker could inject JavaScript that is executed in a user’s browser when visiting the vulnerable page. Remediation referenced in multiple sources is to update to 6.5...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/03/11 12:23 a.m.15 views

CVE-2026-27263

Adobe Experience Manager 6.5.23 and earlier suffer a stored XSS in vulnerable form fields. A low-privileged user can inject malicious scripts, which execute in victims’ browsers when loading pages containing the affected field. According to the provided metrics, the impact is limited to confident...

5.8AI score0.0003EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/03/11 12:23 a.m.3 views

CVE-2026-27263

...

5.8AI score0.0003EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/03/11 12:23 a.m.3 views

CVE-2026-27232 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/11 12:23 a.m.7 views

EUVD-2026-10998

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 12:23 a.m.2 views

CVE-2026-27239 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.8AI score0.00167EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/11 12:23 a.m.29 views

CVE-2026-27264

...

0.0003EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/11 12:23 a.m.5 views

CVE-2026-27230

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00205EPSS
Exploits0References2
Rows per page
Query Builder