CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2018-15971
https://notcve.org/view.php?id=CVE-2018-15971
Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.4, 6.3, 6.2, 6.1 y 6.0, tiene una vulnerabilidad Cross-Site Scripting (XSS) reflejado. Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/105575 https://helpx.adobe.com/security/products/experience-manager/apsb18-36.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2018-5005
https://notcve.org/view.php?id=CVE-2018-5005
Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a Cross-site Scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.4, 6.3, 6.2, 6.1 y 6.0, tiene una vulnerabilidad Cross-Site Scripting (XSS). Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/105073 http://www.securitytracker.com/id/1041470 https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2018-12807
https://notcve.org/view.php?id=CVE-2018-12807
Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have an input validation bypass vulnerability. Successful exploitation could lead to unauthorized information modification. Adobe Experience Manager, en versiones 6.4, 6.3, 6.2, 6.1 y 6.0, tiene una vulnerabilidad de omisión de validación de entradas. Su explotación con éxito podría resultar en una modificación no autorizada de información. • http://www.securityfocus.com/bid/105068 http://www.securitytracker.com/id/1041470 https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-5006
https://notcve.org/view.php?id=CVE-2018-5006
Adobe Experience Manager versions 6.4 and earlier have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.4 y anteriores, tiene una vulnerabilidad Server-Side Request Forgery (SSRF). Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/104702 https://helpx.adobe.com/security/products/experience-manager/apsb18-23.html • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-12809
https://notcve.org/view.php?id=CVE-2018-12809
Adobe Experience Manager versions 6.4 and earlier have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.4 y anteriores, tiene una vulnerabilidad Server-Side Request Forgery (SSRF). Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/104702 https://helpx.adobe.com/security/products/experience-manager/apsb18-23.html • CWE-918: Server-Side Request Forgery (SSRF) •