CVE-2024-43745 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browse...

CVE-2024-43743 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52830

Adobe Experience Manager CVE-2024-52830 describes a stored XSS in AEM 6.5.21 and earlier, where malicious scripts can be injected into vulnerable form fields and executed when a user visits the affected page. The CVSS 3.1 base score is 5.4 (Medium) with network attack vector, low access/privilege...

CVE-2024-52830 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52818 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52864

CVE-2024-52864 affects Adobe Experience Manager (AEM) versions 6.5.21 and earlier. It is a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields that can cause malicious JavaScript to run in a victim’s browser when visiting a page containing the compromised field. The vulnerab...

CVE-2024-52825 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-43725 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-43725

Adobe Experience Manager (AEM) versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing attacker-injected JavaScript to run in a victim’s browser when visiting the affected page. The CVE is CVE-2024-43725. Available public d...

CVE-2024-52859

Adobe Experience Manager (AEM) versions 6.5.21 and earlier are affected by a stored Cross‑Site Scripting (XSS) vulnerability in vulnerable form fields, allowing malicious JavaScript to execute in a victim’s browser when visiting the affected page. The public details identify the affected componen...

CVE-2024-52827 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52858 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52992 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52834 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-43746

Adobe Experience Manager 6.5.21 and earlier are affected by a stored Cross‑Site Scripting (XSS) vulnerability (CVE-2024-43746). Malicious scripts can be injected into vulnerable form fields and executed in a victim’s browser when the page containing the field is accessed. The issue is documented ...

CVE-2024-43734 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52829

CVE-2024-52829 affects Adobe Experience Manager (AEM) 6.5.21 and earlier, with a stored XSS vulnerability in vulnerable form fields that could lead to malicious JavaScript execution in a victim’s browser. The connected sources confirm the existence of stored XSS (and related DOM-based variants) i...

CVE-2024-52991 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-52991

CVE-2024-52991 affects Adobe Experience Manager (AEM) versions 6.5.21 and earlier, describing a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields that could allow malicious JavaScript execution in a user’s browser. Public sources confirm this is tied to AEM’s 6.5.x line wi...

CVE-2024-43751

Adobe Experience Manager (AEM) 6.5.21 and earlier are affected by a stored XSS vulnerability (CVE-2024-43751) in vulnerable form fields, potentially allowing malicious JavaScript to run in a victim’s browser. Mitigation: update to AEM 6.5.22 or newer (per APSB24-69 and related advisories); apply ...