CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9643
https://notcve.org/view.php?id=CVE-2020-9643
Adobe Experience Manager versions 6.5 and earlier have a server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5 y anteriores, presentan una vulnerabilidad de tipo server-side request forgery (ssrf). Una explotación con éxito podría conllevar a una divulgación de información confidencial • https://helpx.adobe.com/security/products/experience-manager/apsb20-31.html • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9645
https://notcve.org/view.php?id=CVE-2020-9645
Adobe Experience Manager versions 6.5 and earlier have a blind server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5 y anteriores, presentan una vulnerabilidad de tipo server-side request forgery (ssrf) ciega. Una explotación con éxito podría conllevar a una divulgación de información confidencial • https://helpx.adobe.com/security/products/experience-manager/apsb20-31.html • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-16468
https://notcve.org/view.php?id=CVE-2019-16468
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an user interface injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de inyección de la interfaz de usuario. Una explotación con éxito podría conllevar a una divulgación de información confidencial . • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 7.5EPSS: 14%CPEs: 1EXPL: 0CVE-2019-16469
https://notcve.org/view.php?id=CVE-2019-16469
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an expression language injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de inyección de lenguaje de expresión. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-917: Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2019-16466
https://notcve.org/view.php?id=CVE-2019-16466
Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de tipo cross-site scripting reflejado. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •