Vulnerabilities > Adobe > Experience Manager > 6.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-25 | CVE-2019-8234 | Cross-Site Request Forgery (CSRF) vulnerability in Adobe Experience Manager 6.2/6.3/6.4 Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. | 6.5 |
| 2019-10-25 | CVE-2019-8088 | Command Injection vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. | 9.8 |
| 2019-10-25 | CVE-2019-8087 | XXE vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. | 7.5 |
| 2019-10-25 | CVE-2019-8086 | XXE vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. | 7.5 |
| 2019-10-25 | CVE-2019-8085 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a reflected cross site scripting vulnerability. | 6.1 |
| 2019-10-25 | CVE-2019-8084 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a reflected cross site scripting vulnerability. | 6.1 |
| 2019-10-25 | CVE-2019-8083 | Cross-site Scripting vulnerability in Adobe Experience Manager 6.3/6.4/6.5 Adobe Experience Manager versions 6.5, 6.4 and 6.3 have a cross site scripting vulnerability. | 6.1 |
| 2019-10-25 | CVE-2019-8082 | XXE vulnerability in Adobe Experience Manager 6.2/6.3/6.4 Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. | 7.5 |
| 2019-10-25 | CVE-2019-8081 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have an authentication bypass vulnerability. | 7.5 |
| 2019-10-24 | CVE-2019-8080 | Cross-site Scripting vulnerability in Adobe Experience Manager 6.3/6.4 Adobe Experience Manager versions 6.4 and 6.3 have a stored cross site scripting vulnerability. | 6.1 |