CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2490 matches found

Cvelist•added 2026/06/09 4:48 p.m.•26 views

CVE-2026-47956 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS0.00224EPSS

Exploits0References1

CVE•added 2026/06/09 4:48 p.m.•12 views

CVE-2026-47977

Adobe Experience Manager versions 6.5.24, LTS SP1, and 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability. A low-privileged attacker can inject malicious scripts into vulnerable form fields, with malicious JavaScript potentially executed in a victim’s browser wh...

5.4CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•11 views

CVE-2026-48258

CVE-2026-48258 affects Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier. The issue is a DOM-based XSS vulnerability where an attacker can leverage DOM manipulation to execute malicious JavaScript in the victim’s browser. Exploitation requires user interaction (the victim mus...

5.4CVSS5.5AI score0.00283EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•9 views

CVE-2026-47962

Adobe Experience Manager (AEM) versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored XSS vulnerability. A low-privileged attacker can inject malicious scripts into vulnerable form fields, leading to malicious JavaScript execution in a victim’s browser when visiting a page with th...

5.4CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•10 views

CVE-2026-47970

Adobe Experience Manager (AEM) versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability. A low-privileged attacker can abuse vulnerable form fields to inject malicious scripts, which may execute in a victim’s browser when visiting the page co...

5.4CVSS5.5AI score0.00307EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•10 views

CVE-2026-47957

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse ...

5.4CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•8 views

CVE-2026-47986

CVE-2026-47986 affects Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier. It is a DOM-based Cross‑Site Scripting (XSS) vulnerability where an attacker can cause malicious JavaScript to run in a victim’s browser by manipulating the DOM; exploitation requires the user to visit ...

5.4CVSS5.5AI score0.00207EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•9 views

CVE-2026-48304

Adobe Experience Manager (AEM) versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability. A low-privileged attacker can abuse vulnerable form fields to inject malicious JavaScript, which may execute in a victim’s browser when visiting the page...

5.4CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•9 views

CVE-2026-47958

Adobe Experience Manager (AEM) versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored XSS vulnerability. A low-privileged attacker can inject malicious scripts into vulnerable form fields, with malicious JavaScript executed in the victim’s browser when visiting the page containing...

5.4CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/06/09 12:0 a.m.•7 views

PT-2026-48048

5.4CVSS5.4AI score0.00307EPSS

Exploits0References2

Positive Technologies•added 2026/06/09 12:0 a.m.•8 views

PT-2026-48070

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.24 and earlier Adobe Experience Manager versions LTS SP1 and earlier Adobe Experience Manager versions 2026.04 and earlier Description A stored Cross-Site Scripting XSS issue allows a low-privileged attack...

5.4CVSS5.4AI score0.00224EPSS

Exploits0References3

Positive Technologies•added 2026/06/09 12:0 a.m.•12 views

PT-2026-48272

Name of the Vulnerable Software and Affected Versions ColdFusion versions prior to 2023.20 ColdFusion versions prior to 2025.9 Description An improper limitation of a pathname to a restricted directory, known as Path Traversal, allows an attacker to bypass security features and access unauthorize...

9.6CVSS5.2AI score0.07624EPSS

Exploits0References3

Positive Technologies•added 2026/06/09 12:0 a.m.•9 views

PT-2026-48052

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

5.4CVSS5.5AI score0.00283EPSS

Exploits0References2

Positive Technologies•added 2026/06/09 12:0 a.m.•6 views

PT-2026-48079

5.4CVSS5.5AI score0.00207EPSS

Exploits0References2

Positive Technologies•added 2026/06/09 12:0 a.m.•5 views

PT-2026-48059

5.4CVSS5.4AI score0.00224EPSS

Exploits0References3

Positive Technologies•added 2026/06/09 12:0 a.m.•5 views

PT-2026-48054