CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

57 matches found

NVD•added 2026/06/09 5:17 p.m.•8 views

CVE-2026-47953

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS0.00224EPSS

Exploits0References1

Vulnrichment•added 2026/06/09 4:48 p.m.•7 views

CVE-2026-47990 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

5.4CVSS5.4AI score0.00224EPSS

Exploits0References1

CVE•added 2026/06/09 4:48 p.m.•15 views

CVE-2026-47973

Technical details about CVE-2026-47973 are not publicly provided in the supplied documents; monitor for updates from Adobe and NVD for affected versions and remediation.

5.4CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/06/09 12:0 a.m.•8 views

PT-2026-48060

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.24 and earlier Adobe Experience Manager versions LTS SP1 and earlier Adobe Experience Manager versions 2026.04 and earlier Description A stored Cross-Site Scripting XSS issue allows a low-privileged attack...

5.4CVSS5.4AI score0.00224EPSS

Exploits0References3

Positive Technologies•added 2026/06/09 12:0 a.m.•15 views

PT-2026-48097

5.4CVSS5.4AI score0.00224EPSS

Exploits0References2

EUVD•added 2026/04/14 6:30 p.m.•3 views

EUVD-2026-22665

Adobe Experience Manager versions FP11.7 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.8AI score0.00189EPSS

Exploits0References2

EUVD•added 2026/03/11 12:23 a.m.•4 views

EUVD-2026-10963

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00205EPSS

Exploits0References1

EUVD•added 2026/03/11 12:23 a.m.•4 views

EUVD-2026-11013

5.4CVSS5.8AI score0.00167EPSS

Exploits0References1

RedhatCVE•added 2026/02/19 1:28 a.m.•15 views

CVE-2025-14289

IBM webMethods Integration Server 12.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site...

5.4CVSS5.5AI score0.00162EPSS

Exploits0References1

OSV•added 2025/12/31 11:15 p.m.•3 views

CVE-2025-67710

There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and Linux that in some configurations allows a remote unauthenticated attacker to store files that contain malicious code that may execute in the context of a victim’s browser...

6.1CVSS5.5AI score0.00197EPSS

Exploits0References1

RedhatCVE•added 2025/12/11 7:1 p.m.•9 views

CVE-2025-64875

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.4AI score0.00167EPSS

Exploits0References1

RedhatCVE•added 2025/12/11 7:1 p.m.•9 views

CVE-2025-64541

5.4CVSS5.5AI score0.00205EPSS

Exploits0References1

EUVD•added 2025/12/10 9:31 p.m.•4 views

EUVD-2025-202525

5.4CVSS5AI score0.00205EPSS

Exploits0References2

EUVD•added 2025/12/10 9:31 p.m.•4 views

EUVD-2025-202546