experience manager vulnerabilities and exploits

4.3
CVSSv2
CVE-2018-4876

Adobe Experience Manager versions 6.3, 6.2, and 6.1 are vulnerable to cross-site scripting via a bypass of the Sling XSSAPI#getValidHref function....

AdobeExperience Manager
4.3
CVSSv2
CVE-2018-4875

Adobe Experience Manager versions 6.1 and 6.0 are vulnerable to a reflected cross-site scripting vulnerability related to the handling of malicious content embedded in image files uploaded to the DAM....

AdobeExperience Manager
4.3
CVSSv2
CVE-2017-3109

An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. Adobe Experience Manager has a reflected cross-site scripting vulnerability in the HtmlRendererServlet....

AdobeExperience Manager
4.3
CVSSv2
CVE-2016-4168

Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, and 6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....

AdobeExperience Manager
5
CVSSv2
CVE-2016-4169

Adobe Experience Manager 6.0, 6.1, and 6.2 allow attackers to obtain sensitive audit log event information via unspecified vectors....

AdobeExperience Manager
4.3
CVSSv2
CVE-2016-4170

Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....

AdobeExperience Manager
5
CVSSv2
CVE-2016-4253

The Backup functionality in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows attackers to obtain sensitive information via unspecified vectors....

AdobeExperience Manager
4.3
CVSSv2
CVE-2017-11296

An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. A cross-site scripting vulnerability in Apache Sling Servlets Post 2.3.20 has been resolved in Adobe Experience Manager....

AdobeExperience Manager
5
CVSSv2
CVE-2017-3107

Adobe Experience Manager 6.3 and earlier has a misconfiguration vulnerability....

AdobeExperience Manager
7.5
CVSSv2
CVE-2017-3108

Adobe Experience Manager 6.2 and earlier has a malicious file execution vulnerability....

AdobeExperience Manager