Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe experience manager - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-40722
AEM Forms Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by an XML External Entity (XXE) injection vulnerability that could be abused by an malicious user to achieve RCE.
Adobe Experience Manager
Adobe Experience Manager Cloud Service -
9.8
CVSSv3
CVE-2019-8088
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Experience Manager 6.2
Adobe Experience Manager 6.4
Adobe Experience Manager 6.3
Adobe Experience Manager 6.5
9.8
CVSSv3
CVE-2019-7964
Adobe Experience Manager versions 6.5, and 6.4 have an authentication bypass vulnerability. Successful exploitation could lead to remote code execution.
Adobe Experience Manager 6.5
Adobe Experience Manager 6.4
9.8
CVSSv3
CVE-2017-3108
Adobe Experience Manager 6.2 and previous versions has a malicious file execution vulnerability.
Adobe Experience Manager
9
CVSSv3
CVE-2020-24445
AEM's Cloud Service offering, as well as version 6.5.6.0 (and below), are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an malicious user to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in ...
Adobe Experience Manager Cloud Service -
Adobe Experience Manager
9
CVSSv3
CVE-2020-9732
The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.2 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Sites component. These scripts may be executed in...
Adobe Experience Manager
Adobe Experience Manager Forms 6.4.8.1
Adobe Experience Manager Forms 6.5.5.0
8.8
CVSSv3
CVE-2021-28627
Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is affected by a Server-side Request Forgery. An authenticated attacker could leverage this vulnerability to contact systems blocked by the dispatcher. Exploitation of this issue does not req...
Adobe Experience Manager
8.8
CVSSv3
CVE-2016-7885
Adobe Experience Manager versions 6.2 and previous versions have a vulnerability that could be used in Cross-Site Request Forgery attacks.
Adobe Experience Manager
7.5
CVSSv3
CVE-2021-28626
Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is affected by an Improper Authorization vulnerability allowing users to create nodes under a location. An unauthenticated attacker could leverage this vulnerability to cause an application d...
Adobe Experience Manager
7.5
CVSSv3
CVE-2021-21083
AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by an Improper Access Control vulnerability. An unauthenticated attacker could leverage this vulnerability to cause an application denial-of-servic...
Adobe Experience Manager
Adobe Experience Manager Cloud Service -
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »