Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe experience manager - vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2018-19724
Adobe Experience Manager Forms versions 6.2, 6.3 and 6.4 have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
Adobe Experience Manager 6.2.0
Adobe Experience Manager 6.3.0
Adobe Experience Manager 6.4.0
696
VMScore
CVE-2016-0958
Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote malicious users to have an unspecified impact via a crafted serialized Java object.
Adobe Experience Manager 5.6.1
Adobe Experience Manager 6.0.0
Adobe Experience Manager 6.1.0
445
VMScore
CVE-2019-8082
Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure.
Adobe Experience Manager 6.4
Adobe Experience Manager 6.2
Adobe Experience Manager 6.3
383
VMScore
CVE-2019-8078
Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a reflected cross site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
Adobe Experience Manager 6.4
Adobe Experience Manager 6.2
Adobe Experience Manager 6.3
383
VMScore
CVE-2019-8234
Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. Successful exploitation could lead to sensitive information disclosure.
Adobe Experience Manager 6.4
Adobe Experience Manager 6.2
Adobe Experience Manager 6.3
445
VMScore
CVE-2016-4169
Adobe Experience Manager 6.0, 6.1, and 6.2 allow malicious users to obtain sensitive audit log event information via unspecified vectors.
Adobe Experience Manager 6.0.0
Adobe Experience Manager 6.1.0
Adobe Experience Manager 6.2.0
695
VMScore
CVE-2016-0957
Dispatcher prior to 4.1.5 in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 does not properly implement a URL filter, which allows remote malicious users to bypass dispatcher rules via unspecified vectors.
Adobe Dispatcher
Adobe Experience Manager 5.6.1
Adobe Experience Manager 6.0.0
Adobe Experience Manager 6.1.0
535
VMScore
CVE-2020-9732
The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.2 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Sites component. These scripts may be executed in...
Adobe Experience Manager
Adobe Experience Manager Forms 6.5.5.0
Adobe Experience Manager Forms 6.4.8.1
445
VMScore
CVE-2020-9733
An AEM java servlet in AEM versions 6.5.5.0 (and below) and 6.4.8.1 (and below) executes with the permissions of a high privileged service user. If exploited, this could lead to read-only access to sensitive data in an AEM repository.
Adobe Experience Manager
Adobe Experience Manager Forms 6.5.5.0
Adobe Experience Manager Forms 6.4.8.1
786
VMScore
CVE-2016-0956
The Servlets Post component 2.3.6 in Apache Sling, as used in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0, allows remote malicious users to obtain sensitive information via unspecified vectors.
Apache Sling
Adobe Experience Manager 5.6.1
Adobe Experience Manager 6.0.0
Adobe Experience Manager 6.1.0
1 EDB exploit
3 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »