CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2018-12807
https://notcve.org/view.php?id=CVE-2018-12807
Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have an input validation bypass vulnerability. Successful exploitation could lead to unauthorized information modification. Adobe Experience Manager, en versiones 6.4, 6.3, 6.2, 6.1 y 6.0, tiene una vulnerabilidad de omisión de validación de entradas. Su explotación con éxito podría resultar en una modificación no autorizada de información. • http://www.securityfocus.com/bid/105068 http://www.securitytracker.com/id/1041470 https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html • CWE-20: Improper Input Validation •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2018-12806
https://notcve.org/view.php?id=CVE-2018-12806
Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.4, 6.3, 6.2, 6.1 y 6.0, tiene una vulnerabilidad Cross-Site Scripting (XSS) reflejado. Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/105067 http://www.securitytracker.com/id/1041470 https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-5006
https://notcve.org/view.php?id=CVE-2018-5006
Adobe Experience Manager versions 6.4 and earlier have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.4 y anteriores, tiene una vulnerabilidad Server-Side Request Forgery (SSRF). Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/104702 https://helpx.adobe.com/security/products/experience-manager/apsb18-23.html • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-12809
https://notcve.org/view.php?id=CVE-2018-12809
Adobe Experience Manager versions 6.4 and earlier have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.4 y anteriores, tiene una vulnerabilidad Server-Side Request Forgery (SSRF). Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/104702 https://helpx.adobe.com/security/products/experience-manager/apsb18-23.html • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-5004
https://notcve.org/view.php?id=CVE-2018-5004
Adobe Experience Manager versions 6.2 and 6.3 have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.2 y 6.3, tiene una vulnerabilidad Server-Side Request Forgery (SSRF). Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/104702 https://helpx.adobe.com/security/products/experience-manager/apsb18-23.html • CWE-918: Server-Side Request Forgery (SSRF) •