Vulnerabilities > Adobe > Experience Manager > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-23 | CVE-2024-41839 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could lead to a security feature bypass. | 3.5 |
| 2024-06-13 | CVE-2024-36226 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. | 3.5 |
| 2024-06-13 | CVE-2024-26127 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. | 3.5 |
| 2024-06-13 | CVE-2024-26126 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. | 3.5 |
| 2023-12-15 | CVE-2023-48608 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by an Improper Input Validation vulnerability. | 3.5 |
| 2022-01-13 | CVE-2021-43764 | Cross-site Scripting vulnerability in Adobe Experience Manager AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 3.5 |
| 2022-01-13 | CVE-2021-43761 | Cross-site Scripting vulnerability in Adobe Experience Manager AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 3.5 |
| 2021-09-27 | CVE-2021-40711 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.9.0 (and earlier) is affected by a stored XSS vulnerability when creating Content Fragments. | 3.5 |
| 2020-09-10 | CVE-2020-9734 | Cross-site Scripting vulnerability in Adobe Experience Manager The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.1 (and below) is affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Forms component. | 3.5 |
| 2020-09-10 | CVE-2020-9735 | Cross-site Scripting vulnerability in Adobe Experience Manager AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scripts in certain node fields. | 3.5 |