Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

55 matches found

Cvelist
Cvelistadded 2026/05/12 7:50 p.m.26 views

CVE-2026-34686 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may ...

8.7CVSS0.00013EPSS
Exploits0References1
Snyk
Snykadded 2026/03/11 4:39 a.m.2 views

Cross-site Scripting (XSS)

Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Cross-site Scripting XSS. Adobe Vulnerability Report:This vulnerability could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields...

8.7CVSS5.5AI score0.00057EPSS
Exploits0References2
Snyk
Snykadded 2026/03/11 4:39 a.m.1 views

Cross-site Scripting (XSS)

Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Cross-site Scripting XSS. Adobe Vulnerability Report:This vulnerability could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form field...

4.8CVSS5.5AI score0.0009EPSS
Exploits0References2
NVD
NVDadded 2026/03/11 3:15 a.m.2 views

CVE-2026-21284

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript ma...

8.1CVSS0.00283EPSS
Exploits0References1
EUVD
EUVDadded 2026/03/11 2:19 a.m.3 views

EUVD-2026-11047

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Exploitation of this...

4.8CVSS5.8AI score0.0009EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/03/11 2:19 a.m.3 views

CVE-2026-21284

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript ma...

8.1CVSS5.7AI score0.00283EPSS
Exploits0References2
EUVD
EUVDadded 2026/03/11 12:23 a.m.0 views

EUVD-2026-11024

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.0003EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/11 12:23 a.m.0 views

CVE-2026-27259

...

5.8AI score0.0003EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/03/11 12:0 a.m.2 views

PT-2026-24516

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00041EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/03/10 12:0 a.m.1 views

PT-2026-24550

Name of the Vulnerable Software and Affected Versions Adobe Commerce versions 2.4.4-p16 and earlier Adobe Commerce versions 2.4.5-p15 Adobe Commerce versions 2.4.6-p13 Adobe Commerce versions 2.4.7-p8 Adobe Commerce versions 2.4.8-p3 Adobe Commerce version 2.4.9-alpha3 Description The software is...

8.5CVSS5.9AI score0.00283EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/12/11 7:1 p.m.1 views

CVE-2025-64612

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.5AI score0.00025EPSS
Exploits0References1
OSV
OSVadded 2025/12/10 7:16 p.m.1 views

CVE-2025-64852

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.7AI score0.00025EPSS
Exploits0References1
OSV
OSVadded 2025/12/10 7:16 p.m.0 views

CVE-2025-64601

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.7AI score0.00025EPSS
Exploits0References1
OSV
OSVadded 2025/12/10 7:16 p.m.0 views

CVE-2025-64586

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.7AI score
Exploits0References1
Cvelist
Cvelistadded 2025/12/10 6:24 p.m.24 views

CVE-2025-64605 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00025EPSS
Exploits0References1
CVE
CVEadded 2025/12/10 6:23 p.m.2 views

CVE-2025-64586

Adobe Experience Manager (AEM) versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. A low-privileged attacker can inject malicious JavaScript, which may execute in a victim’s browser when visiting a page containing the vulnerable...

5.4CVSS5.1AI score0.00025EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/12/10 6:23 p.m.21 views

CVE-2025-64840 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00025EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/10 6:23 p.m.1 views

CVE-2025-64576 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.1AI score0.00025EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/10 6:23 p.m.1 views

CVE-2025-64615 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5AI score0.00025EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/10 6:23 p.m.22 views

CVE-2025-64557 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00025EPSS
Exploits0References1
Rows per page
Query Builder