CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2 hours ago•2 views

CVE-2026-47974

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

Cvelist•added 3 hours ago•3 views

CVE-2026-47980 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

EUVD•added 3 hours ago•2 views

EUVD-2026-35625

5.4CVSS5.4AI score

EUVD•added 3 hours ago•3 views

EUVD-2026-35621

5.4CVSS5.4AI score

CVE•added 3 hours ago•3 views

CVE-2026-47944

Adobe Experience Manager (AEM) versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability. A low-privileged attacker can inject malicious scripts into vulnerable form fields, with malicious JavaScript executed in a victim’s browser when visitin...

5.4CVSS5.5AI score

Cvelist•added 3 hours ago•2 views

CVE-2026-47944 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

EUVD•added 3 hours ago•2 views

EUVD-2026-35709

5.4CVSS5.4AI score

Positive Technologies•added 20 hours ago•3 views

PT-2026-48098

EUVD•added 2026/03/11 3:31 a.m.•2 views

EUVD-2026-10981

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

EUVD•added 2026/03/11 3:31 a.m.•2 views

EUVD-2026-10965

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

Cvelist•added 2026/03/11 2:19 a.m.•35 views

CVE-2026-21290 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may...

8.7CVSS0.00057EPSS

NVD•added 2026/03/11 1:16 a.m.•1 views

CVE-2026-27261

Rejected reason: This CVE ID was issued in error by its CVE Numbering Authority...

0.0003EPSS

Exploits0

OSV•added 2026/03/11 1:16 a.m.•3 views

CVE-2026-27241

5.4CVSS5.7AI score0.00041EPSS

OSV•added 2026/03/11 1:16 a.m.•2 views

CVE-2026-27229

5.4CVSS5.7AI score0.00041EPSS

CVE•added 2026/03/11 12:23 a.m.•9 views

CVE-2026-27223

CVE-2026-27223 affects Adobe Experience Manager (AEM) up to and including version 6.5.23. The vulnerability is a stored cross-site scripting (XSS) flaw in how user-editable form field input is sanitized and output-encoded, allowing an attacker to inject malicious JavaScript that executes in a vic...

Exploits0References1Affected Software1

Cvelist•added 2026/03/11 12:23 a.m.•23 views

CVE-2026-27263

...

0.0003EPSS

Exploits0

ATTACKERKB•added 2026/03/11 12:23 a.m.•3 views

CVE-2026-27262

CVE•added 2026/03/11 12:23 a.m.•8 views

CVE-2026-27249

Adobe Experience Manager (AEM) 6.5.x up to 6.5.23 and earlier is affected by a stored XSS vulnerability (CVE-2026-27249) in form field handling due to insufficient input sanitization/escaping. A low-privilege attacker can cause malicious JavaScript to run in victims’ browsers when they view vulne...

Exploits0References1Affected Software1

ATTACKERKB•added 2026/03/11 12:23 a.m.•2 views

CVE-2026-27256