CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2024/06/13 7:52 a.m.•56 views

CVE-2024-36149

Adobe Experience Manager (AEM) 6.5.20 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. An attacker could inject malicious JavaScript that runs in a victim’s browser when loading a page with the affected field. The CVE entry is supported by NV...

CVE•added 2024/06/13 7:52 a.m.•54 views

CVE-2024-36148

CVE-2024-36148 affects Adobe Experience Manager (AEM) versions 6.5.20 and earlier. The issue is a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing a low-privileged attacker to inject malicious scripts that execute in a victim’s browser when visiting the affected...

CVE•added 2024/06/13 7:52 a.m.•52 views

CVE-2024-36193

Adobe Experience Manager (AEM)

CVE•added 2024/06/13 7:52 a.m.•62 views

CVE-2024-26049

Adobe Experience Manager 6.5.20 and earlier are affected by a stored Cross‑Site Scripting (XSS) vulnerability in vulnerable form fields. The issue can be exploited by a privileged attacker to inject malicious scripts, with the attacker needing user interaction and elevated privileges (per CVSS: H...

4.8CVSS4.9AI score0.01624EPSS

Cvelist•added 2024/06/13 7:52 a.m.•16 views

CVE-2024-26116 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browse...

5.4CVSS0.02022EPSS

Vulnrichment•added 2024/06/13 7:52 a.m.•17 views

CVE-2024-26116 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)

5.4CVSS5.4AI score0.02022EPSS

CVE•added 2024/06/13 7:52 a.m.•59 views

CVE-2024-36221

CVE-2024-36221 concerns Adobe Experience Manager 6.5.20 and earlier, with a stored XSS in vulnerable form fields. The issue allows malicious JavaScript to execute in a victim’s browser when visiting pages containing the affected field. Public documents consistently identify the affected product/c...

5.4CVSS5.3AI score0.02635EPSS

CVE•added 2024/06/13 7:52 a.m.•63 views

CVE-2024-36209

CVE-2024-36209 affects Adobe Experience Manager 6.5.20 and earlier and is a stored XSS vulnerability in vulnerable form fields. An attacker could inject malicious scripts that execute in a victim’s browser when visiting the affected page, with the impact described as possible in the documents. Th...

CVE•added 2024/06/13 7:52 a.m.•60 views

CVE-2024-26085

Adobe Experience Manager (AEM) versions 6.5.20 and earlier are affected by a stored XSS vulnerability (CVE-2024-26085) in vulnerable form fields. Exploitation could execute malicious JavaScript in the victim’s browser. The issue is addressed in the APSB24-28 advisory with updates for 6.5.21 and l...

5.4CVSS5.3AI score0.01615EPSS

Cvelist•added 2024/06/13 7:52 a.m.•19 views

CVE-2024-36212 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS0.01615EPSS

Vulnrichment•added 2024/06/13 7:52 a.m.•14 views

CVE-2024-36212 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

5.4CVSS5.3AI score0.01615EPSS

CVE•added 2024/06/13 7:52 a.m.•57 views

CVE-2024-36212

CVE-2024-36212 affects Adobe Experience Manager (AEM) 6.5.20 and earlier. The vulnerability is a stored Cross-Site Scripting (XSS) flaw that allows an attacker to inject malicious scripts into vulnerable form fields, with malicious JavaScript potentially executing in a victim’s browser when loadi...

5.4CVSS5.3AI score0.01615EPSS

CVE•added 2024/06/13 7:52 a.m.•51 views

CVE-2024-26077

Adobe Experience Manager (AEM) 6.5.20 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing malicious JavaScript to run in a victim’s browser when visiting a page containing the field. The CVE entry (CVE-2024-26077) is active and referenc...

5.4CVSS5.3AI score0.0145EPSS

Vulnrichment•added 2024/06/13 7:52 a.m.•17 views

CVE-2024-26115 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)

5.4CVSS5.4AI score0.02687EPSS

Cvelist•added 2024/06/13 7:52 a.m.•17 views

CVE-2024-36178 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

5.4CVSS0.024EPSS

CVE•added 2024/06/13 7:52 a.m.•57 views

CVE-2024-36178

Adobe Experience Manager (AEM) 6.5.20 and earlier is affected by a stored XSS vulnerability in form fields (improper validation of user input). An attacker could inject JavaScript that executes in a victim’s browser when visiting the vulnerable page. CVE-2024-36178 is the identifier for this issu...

Cvelist•added 2024/06/13 7:52 a.m.•18 views

CVE-2024-36166 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

5.4CVSS0.01781EPSS

Vulnrichment•added 2024/06/13 7:52 a.m.•22 views

CVE-2024-36166 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

5.4CVSS5.3AI score0.01781EPSS

CVE•added 2024/06/13 7:52 a.m.•54 views

CVE-2024-36172

CVE-2024-36172 concerns Adobe Experience Manager (AEM) up to version 6.5.20 and earlier. The issue is a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing an attacker to inject malicious scripts that execute in a victim’s browser when loading the page containing t...

5.4CVSS5.3AI score0.01781EPSS