CVE-2024-36205

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36150

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36158

CVE-2024-36158 affects Adobe Experience Manager 6.5.20 and earlier. A stored XSS vulnerability in vulnerable form fields can allow malicious JavaScript to run in a victim’s browser when visiting a page with the affected field. CVSSv3.1 base score 5.4 (Medium); attack vector Network, authenticatio...

CVE-2024-36182

CVE-2024-36182 affects Adobe Experience Manager (AEM) 6.5.20 and earlier. The vulnerability is a stored Cross-Site Scripting (XSS) in vulnerable form fields, allowing injection of malicious JavaScript that runs in a victim’s browser when visiting pages containing those fields. The CVE is linked t...

CVE-2024-3323

Cross Site Scripting in UI Request/Response Validation in TIBCO JasperReports Server 8.0.4 and 8.2.0 allows allows for the injection of malicious executable scripts into the code of a trusted application that may lead to stealing the user's active session cookie via sending malicious link, entici...

shop.megaheinz.com XSS vulnerability

Open Bug Bounty ID: OBB-58133 Description| Value ---|--- Affected Website:| shop.megaheinz.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...