CVE-2019-8234
https://notcve.org/view.php?id=CVE-2019-8234
Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo cross-site request forgery. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2019-8088
https://notcve.org/view.php?id=CVE-2019-8088
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de inyección de comandos. Una explotación con éxito podría conllevar a una ejecución de código arbitrario. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVE-2019-8087
https://notcve.org/view.php?id=CVE-2019-8087
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo xml external entity injection. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-611: Improper Restriction of XML External Entity Reference •
CVE-2019-8086
https://notcve.org/view.php?id=CVE-2019-8086
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo xml external entity injection. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-611: Improper Restriction of XML External Entity Reference •
CVE-2019-8085
https://notcve.org/view.php?id=CVE-2019-8085
Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a reflected cross site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager versiones 6.5, 6.4, 6.3 y 6.2, presenta una vulnerabilidad de tipo cross site scripting reflejado. Una explotación con éxito podría conllevar a una divulgación de información confidencial. • https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •