CVE-2018-4930
https://notcve.org/view.php?id=CVE-2018-4930
Adobe Experience Manager versions 6.3 and earlier have an exploitable Cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.3 y anteriores, tiene una vulnerabilidad explotable de Cross-Site Scripting (XSS). Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/103706 https://helpx.adobe.com/security/products/experience-manager/apsb18-10.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-4929
https://notcve.org/view.php?id=CVE-2018-4929
Adobe Experience Manager versions 6.2 and earlier have an exploitable stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.2 y anteriores, tiene una vulnerabilidad explotable de Cross-Site Scripting (XSS) persistente. Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/103707 https://helpx.adobe.com/security/products/experience-manager/apsb18-10.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-4931
https://notcve.org/view.php?id=CVE-2018-4931
Adobe Experience Manager versions 6.1 and earlier have an exploitable stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. Adobe Experience Manager, en versiones 6.1 y anteriores, tiene una vulnerabilidad explotable de Cross-Site Scripting (XSS) persistente. Su explotación con éxito podría resultar en una divulgación de información sensible. • http://www.securityfocus.com/bid/103709 https://helpx.adobe.com/security/products/experience-manager/apsb18-10.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-4876
https://notcve.org/view.php?id=CVE-2018-4876
Adobe Experience Manager versions 6.3, 6.2, and 6.1 are vulnerable to cross-site scripting via a bypass of the Sling XSSAPI#getValidHref function. Las versiones 6.3, 6.2 y 6.1 de Adobe Experience Manager son vulnerables a Cross-Site Scripting (XSS) mediante una omisión de la función Sling XSSAPI#getValidHref. • http://www.securityfocus.com/bid/102990 http://www.securitytracker.com/id/1040365 https://helpx.adobe.com/security/products/experience-manager/apsb18-04.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-4875
https://notcve.org/view.php?id=CVE-2018-4875
Adobe Experience Manager versions 6.1 and 6.0 are vulnerable to a reflected cross-site scripting vulnerability related to the handling of malicious content embedded in image files uploaded to the DAM. Las versiones 6.1 y 6.0 de Adobe Experience Manager son vulnerables a Cross-Site Scripting (XSS) reflejado relacionado con la gestión de contenido malicioso embebido en archivos de imagen subidos al DAM. • http://www.securityfocus.com/bid/102991 http://www.securitytracker.com/id/1040365 https://helpx.adobe.com/security/products/experience-manager/apsb18-04.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •