Page 91 of 507 results (0.002 seconds)

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an user interface injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de inyección de la interfaz de usuario. Una explotación con éxito podría conllevar a una divulgación de información confidencial . • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •

CVSS: 7.5EPSS: 14%CPEs: 1EXPL: 0

Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an expression language injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de inyección de lenguaje de expresión. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-917: Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') •

CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0

Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3, 6.2, 6.1 y 6.0, presentan una vulnerabilidad de tipo cross-site scripting reflejado. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb20-01.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0

Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo cross-site request forgery. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0

Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de inyección de comandos. Una explotación con éxito podría conllevar a una ejecución de código arbitrario. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •