Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Adobe Subscribe
Filtered by product Experience Manager
Total 915 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-3110 1 Adobe 1 Experience Manager 2017-08-16 5.0 MEDIUM 7.5 HIGH
Adobe Experience Manager 6.1 and earlier has a sensitive data exposure vulnerability.
CVE-2017-3107 1 Adobe 1 Experience Manager 2017-08-16 5.0 MEDIUM 7.5 HIGH
Adobe Experience Manager 6.3 and earlier has a misconfiguration vulnerability.
CVE-2017-3108 1 Adobe 1 Experience Manager 2017-08-16 7.5 HIGH 9.8 CRITICAL
Adobe Experience Manager 6.2 and earlier has a malicious file execution vulnerability.
CVE-2016-4168 1 Adobe 1 Experience Manager 2017-08-16 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, and 6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2016-4169 1 Adobe 1 Experience Manager 2017-08-16 5.0 MEDIUM 5.3 MEDIUM
Adobe Experience Manager 6.0, 6.1, and 6.2 allow attackers to obtain sensitive audit log event information via unspecified vectors.
CVE-2016-4253 1 Adobe 1 Experience Manager 2017-08-16 5.0 MEDIUM 5.3 MEDIUM
The Backup functionality in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows attackers to obtain sensitive information via unspecified vectors.
CVE-2016-4170 1 Adobe 1 Experience Manager 2017-08-16 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2016-6933 1 Adobe 2 Experience Manager, Livecycle 2016-12-23 4.3 MEDIUM 6.1 MEDIUM
Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the AACComponent that could be used in cross-site scripting attacks.
CVE-2016-7885 1 Adobe 1 Experience Manager 2016-12-22 6.8 MEDIUM 8.8 HIGH
Adobe Experience Manager versions 6.2 and earlier have a vulnerability that could be used in Cross-Site Request Forgery attacks.
CVE-2016-7883 1 Adobe 1 Experience Manager 2016-12-22 4.3 MEDIUM 6.1 MEDIUM
Adobe Experience Manager version 6.2 has an input validation issue in create Launch wizard that could be used in cross-site scripting attacks.
CVE-2016-7882 1 Adobe 1 Experience Manager 2016-12-22 4.3 MEDIUM 6.1 MEDIUM
Adobe Experience Manager versions 6.2 and earlier have an input validation issue in the WCMDebug filter that could be used in cross-site scripting attacks.
CVE-2016-7884 1 Adobe 1 Experience Manager 2016-12-22 4.3 MEDIUM 6.1 MEDIUM
Adobe Experience Manager versions 6.1 and earlier have an input validation issue in the DAM create assets that could be used in cross-site scripting attacks.
CVE-2016-0955 4 Adobe, Apple, Linux and 1 more 4 Experience Manager, Mac Os X, Linux Kernel and 1 more 2016-03-23 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in Adobe Experience Manager (AEM) 6.1.0 allows remote authenticated users to inject arbitrary web script or HTML via a folder title field that is mishandled in the Deletion popup dialog.
CVE-2016-0957 4 Adobe, Apple, Linux and 1 more 5 Dispatcher, Experience Manager, Mac Os X and 2 more 2016-02-25 7.8 HIGH 7.5 HIGH
Dispatcher before 4.1.5 in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 does not properly implement a URL filter, which allows remote attackers to bypass dispatcher rules via unspecified vectors.
CVE-2016-0958 4 Adobe, Apple, Linux and 1 more 4 Experience Manager, Mac Os X, Linux Kernel and 1 more 2016-02-18 7.8 HIGH 7.5 HIGH
Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote attackers to have an unspecified impact via a crafted serialized Java object.