Lucene search

K

25 matches found

CVE
CVE
added 2024/12/10 9:15 p.m.57 views

CVE-2024-54037

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by an attacker to execute arbitrary code in the context of the victim's browser session. By manipulating a DOM element through a crafted URL or user input, th...

8.1CVSS6.9AI score0.05473EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.54 views

CVE-2024-54042

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the vict...

6.1CVSS5.6AI score0.00345EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.52 views

CVE-2024-54050

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. An attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction.

6.1CVSS6.5AI score0.00086EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.51 views

CVE-2024-54046

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the vict...

6.1CVSS5.9AI score0.00345EPSS
CVE
CVE
added 2021/06/28 3:15 p.m.50 views

CVE-2021-28579

Adobe Connect version 11.2.1 (and earlier) is affected by an Improper access control vulnerability that can lead to the elevation of privileges. An attacker with 'Learner' permissions can leverage this scenario to access the list of event participants.

4.3CVSS4.4AI score0.00319EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.49 views

CVE-2024-54038

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on confidentiality. Exploitation of ...

4.3CVSS5AI score0.00099EPSS
CVE
CVE
added 2025/05/13 9:16 p.m.49 views

CVE-2025-43567

Adobe Connect versions 12.8 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containin...

9.3CVSS7.8AI score0.00184EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.48 views

CVE-2024-54044

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the vict...

6.1CVSS5.9AI score0.00345EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.47 views

CVE-2024-54043

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the vict...

6.1CVSS5.6AI score0.00345EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.46 views

CVE-2024-54032

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page cont...

9.3CVSS6.8AI score0.00687EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.46 views

CVE-2024-54041

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page cont...

5.4CVSS5.3AI score0.0006EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.45 views

CVE-2024-54040

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page cont...

5.4CVSS5.3AI score0.0006EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.45 views

CVE-2024-54048

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the vict...

6.1CVSS5.6AI score0.00345EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.45 views

CVE-2024-54051

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. An attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction.

6.1CVSS6.5AI score0.00086EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.44 views

CVE-2024-54034

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. A ...

9.3CVSS7.8AI score0.00687EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.43 views

CVE-2024-54039

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page cont...

5.4CVSS5.3AI score0.0006EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.43 views

CVE-2024-54049

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.

6.1CVSS5.7AI score0.00158EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.42 views

CVE-2024-49550

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.

6.1CVSS5.7AI score0.00158EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.41 views

CVE-2024-54036

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page cont...

9.3CVSS8AI score0.00687EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.41 views

CVE-2024-54045

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the vict...

6.1CVSS6.1AI score0.00345EPSS
CVE
CVE
added 2024/12/10 9:15 p.m.41 views

CVE-2024-54047

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the vict...

6.1CVSS5.6AI score0.00345EPSS
CVE
CVE
added 2025/05/13 9:16 p.m.35 views

CVE-2025-30314

Adobe Connect versions 12.8 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing t...

6.1CVSS5.8AI score0.00131EPSS
CVE
CVE
added 2025/05/13 9:16 p.m.32 views

CVE-2025-30315

Adobe Connect versions 12.8 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing t...

6.1CVSS5.8AI score0.00131EPSS
CVE
CVE
added 2025/05/13 9:16 p.m.32 views

CVE-2025-30316

Adobe Connect versions 12.8 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the pag...

5.4CVSS5AI score0.00055EPSS
CVE
CVE
added 2025/07/08 10:15 p.m.12 views

CVE-2025-27203

Adobe Connect versions 24.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could lead to arbitrary code execution by an attacker. Exploitation of this issue does require user interaction and scope is changed.

9.6CVSS7.2AI score0.05375EPSS