Campaign@* Security Vulnerabilities and Issues — Campaign@* CVE List

Lucene search

AdobeCampaign*

11 matches found

CVE•added 2019/07/18 10:15 p.m.•106 views

CVE-2019-7846

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Improper error handling vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

7.5CVSS7.2AI score0.0446EPSS

CVE•added 2019/07/18 10:15 p.m.•102 views

CVE-2019-7850

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have a Command injection vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context of the current user.

9.8CVSS9.6AI score0.13413EPSS

CVE•added 2019/07/18 10:15 p.m.•87 views

CVE-2019-7843

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Insufficient input validation vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

7.5CVSS7.6AI score0.0446EPSS

CVE•added 2019/07/18 10:15 p.m.•86 views

CVE-2019-7847

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Improper Restriction of XML External Entity Reference ('XXE') vulnerability. Successful exploitation could lead to Arbitrary read access to the file system in the context of the current user.

7.5CVSS7.1AI score0.01153EPSS

CVE•added 2019/07/18 10:15 p.m.•85 views

CVE-2019-7848

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Inadequate access control vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

7.5CVSS7.1AI score0.0446EPSS

CVE•added 2019/07/18 10:15 p.m.•84 views

CVE-2019-7941

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Information Exposure Through an Error Message vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

7.5CVSS7.1AI score0.0446EPSS

CVE•added 2022/12/19 10:0 a.m.•83 views

CVE-2022-42343

Adobe Campaign version 7.3.1 (and earlier) and 8.3.9 (and earlier) are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to arbitrary file system read. A low-privilege authenticated attacker can force the application to make arbitrary requests via injection of arbitrary...

6.5CVSS6.5AI score0.00678EPSS

CVE•added 2017/02/15 6:59 a.m.•45 views

CVE-2017-2969

Adobe Campaign versions 16.4 Build 8724 and earlier have a cross-site scripting (XSS) vulnerability.

6.1CVSS5.9AI score0.01232EPSS

CVE•added 2017/04/12 2:59 p.m.•45 views

CVE-2017-2989

Adobe Campaign versions Build 8770 and earlier have an input validation bypass that could be exploited to read, write, or delete data from the Campaign database.

9.1CVSS9AI score0.03507EPSS

CVE•added 2021/11/17 4:15 p.m.•45 views

CVE-2021-40745

Adobe Campaign version 21.2.1 (and earlier) is affected by a Path Traversal vulnerability that could lead to reading arbitrary server files. By leveraging an exposed XML file, an unauthenticated attacker can enumerate other files on the server.

7.5CVSS7.5AI score0.01819EPSS

CVE•added 2017/02/15 6:59 a.m.•33 views

CVE-2017-2968

Adobe Campaign versions 16.4 Build 8724 and earlier have a code injection vulnerability.

9.1CVSS9.3AI score0.02977EPSS