CVE-2019-16467
https://notcve.org/view.php?id=CVE-2019-16467
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de tipo cross-site scripting reflejado. Una explotación con éxito podría conllevar a una divulgación de información confidencial . • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2019-16468
https://notcve.org/view.php?id=CVE-2019-16468
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an user interface injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de inyección de la interfaz de usuario. Una explotación con éxito podría conllevar a una divulgación de información confidencial . • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVE-2019-16466
https://notcve.org/view.php?id=CVE-2019-16466
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de tipo cross-site scripting reflejado. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2019-8234
https://notcve.org/view.php?id=CVE-2019-8234
Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo cross-site request forgery. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2019-8088
https://notcve.org/view.php?id=CVE-2019-8088
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de inyección de comandos. Una explotación con éxito podría conllevar a una ejecución de código arbitrario. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •