Vulnerabilities > Adobe > Experience Manager > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-15 | CVE-2023-48554 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. | 5.4 |
| 2023-12-15 | CVE-2023-48564 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. | 5.4 |
| 2023-12-15 | CVE-2023-48572 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. | 5.4 |
| 2023-12-15 | CVE-2023-48583 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting (DOM-based XSS) vulnerability. | 5.4 |
| 2023-12-15 | CVE-2023-48599 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting (DOM-based XSS) vulnerability. | 5.4 |
| 2023-12-15 | CVE-2023-48604 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. | 5.4 |
| 2023-12-15 | CVE-2023-48616 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. | 5.4 |
| 2023-12-15 | CVE-2023-48622 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. | 5.4 |
| 2023-09-13 | CVE-2023-38215 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.17 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2023-03-22 | CVE-2023-22271 | Inadequate Encryption Strength vulnerability in Adobe Experience Manager Experience Manager versions 6.5.15.0 (and earlier) are affected by a Weak Cryptography for Passwords vulnerability that can lead to a security feature bypass. | 5.3 |