CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2019-16466
https://notcve.org/view.php?id=CVE-2019-16466
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de tipo cross-site scripting reflejado. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8234
https://notcve.org/view.php?id=CVE-2019-8234
Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo cross-site request forgery. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2019-8088
https://notcve.org/view.php?id=CVE-2019-8088
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de inyección de comandos. Una explotación con éxito podría conllevar a una ejecución de código arbitrario. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8087
https://notcve.org/view.php?id=CVE-2019-8087
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo xml external entity injection. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 7.5EPSS: 11%CPEs: 4EXPL: 0CVE-2019-8086
https://notcve.org/view.php?id=CVE-2019-8086
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo xml external entity injection. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-611: Improper Restriction of XML External Entity Reference •