Vulnerabilities > Adobe > Experience Manager > 6.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-27 | CVE-2018-4876 | Cross-site Scripting vulnerability in Adobe Experience Manager 6.1.0/6.2.0/6.3.0 Adobe Experience Manager versions 6.3, 6.2, and 6.1 are vulnerable to cross-site scripting via a bypass of the Sling XSSAPI#getValidHref function. | 4.3 |
| 2017-12-09 | CVE-2017-3111 | Information Exposure vulnerability in Adobe Experience Manager 6.1.0/6.2.0 An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. | 5.0 |
| 2017-12-09 | CVE-2017-3109 | Cross-site Scripting vulnerability in Adobe Experience Manager An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. | 4.3 |
| 2017-12-09 | CVE-2017-11296 | Cross-site Scripting vulnerability in Adobe Experience Manager An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. | 4.3 |
| 2017-08-11 | CVE-2017-3107 | Information Exposure vulnerability in Adobe Experience Manager Adobe Experience Manager 6.3 and earlier has a misconfiguration vulnerability. | 5.0 |
| 2016-12-15 | CVE-2016-7885 | Cross-Site Request Forgery (CSRF) vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.2 and earlier have a vulnerability that could be used in Cross-Site Request Forgery attacks. | 6.8 |
| 2016-12-15 | CVE-2016-7883 | Cross-site Scripting vulnerability in Adobe Experience Manager 6.2.0 Adobe Experience Manager version 6.2 has an input validation issue in create Launch wizard that could be used in cross-site scripting attacks. | 4.3 |
| 2016-12-15 | CVE-2016-7882 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.2 and earlier have an input validation issue in the WCMDebug filter that could be used in cross-site scripting attacks. | 4.3 |
| 2016-12-15 | CVE-2016-6933 | Cross-site Scripting vulnerability in Adobe Experience Manager and Livecycle Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the AACComponent that could be used in cross-site scripting attacks. | 4.3 |
| 2016-08-09 | CVE-2016-4253 | Information Exposure vulnerability in Adobe Experience Manager The Backup functionality in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows attackers to obtain sensitive information via unspecified vectors. | 5.0 |