CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/06/09 6:30 p.m.•8 views

EUVD-2026-35604

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

NVD•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-48268

5.4CVSS0.00207EPSS

NVD•added 2026/06/09 5:17 p.m.•6 views

CVE-2026-47973

5.4CVSS0.00224EPSS

NVD•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-47935

5.4CVSS0.00207EPSS

Cvelist•added 2026/06/09 4:49 p.m.•32 views

CVE-2026-48280 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

5.4CVSS0.00283EPSS

Vulnrichment•added 2026/06/09 4:48 p.m.•10 views

CVE-2026-48251 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Vulnrichment•added 2026/06/09 4:48 p.m.•8 views

CVE-2026-48268 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

CVE•added 2026/06/09 4:48 p.m.•14 views

CVE-2026-47951

Adobe Experience Manager (AEM) on versions 6.5.24, LTS SP1, 2026.04 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. A low-privileged attacker can inject malicious scripts that are executed in the victim’s browser when visiting a page contain...

5.4CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

CVE•added 2026/06/09 4:48 p.m.•16 views

CVE-2026-47987

Adobe Experience Manager (AEM) prior to certain updates is affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. Affected versions: AEM 6.5.24, LTS SP1, 2026.04 and earlier. The issue allows an attacker to manipulate the DOM to execute malicious JavaScript in the victim’s browser, req...

Exploits0References1Affected Software1

CNNVD•added 2026/06/09 12:0 a.m.•8 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager is a content management solution developed by Adobe Inc. in the United States. It can be used to build websites, mobile applications, and forms. This solution supports mobile content management, marketing and sales activity management, and multi-site management, among oth...

5.4CVSS5.1AI score0.00224EPSS

Positive Technologies•added 2026/06/09 12:0 a.m.•9 views

PT-2026-48091

5.4CVSS5.5AI score0.00283EPSS

Positive Technologies•added 2026/06/09 12:0 a.m.•12 views

PT-2026-48075

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier Description A DOM-based Cross-Site Scripting XSS issue exists where an attacker can manipulate the Document Object Model DOM environment to execute malicious JavaScript in...

5.4CVSS5.6AI score0.00207EPSS

Exploits0References3

Positive Technologies•added 2026/06/09 12:0 a.m.•8 views

PT-2026-48087

Positive Technologies•added 2026/06/09 12:0 a.m.•11 views

PT-2026-48056

5.4CVSS5.4AI score0.00224EPSS

Positive Technologies•added 2026/06/09 12:0 a.m.•11 views

PT-2026-48090

Cvelist•added 2026/05/21 8:25 p.m.•33 views

CVE-2026-8421 Concrete CMS 9.5.0 and below is vulnerable to CSRF on install_package() with conditional token bypass leading to RCE

Concrete CMS 9.5.0 and below contains a CSRF vulnerability in the installpackage method of concrete/controllers/singlepage/dashboard/extend/install.php. An attacker who can cause an authenticated administrator to visit a crafted page, and who has placed or caused a package to be present under...

7.5CVSS0.00171EPSS

EUVD•added 2026/05/21 8:25 p.m.•8 views

EUVD-2026-31339

7.5CVSS6.1AI score0.00171EPSS