) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:adobe:experience_manager:6.1.2.1:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-29302 |
Adobe Experience Manager versions 6.5.16.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: June 15, 2023; 3:15:11 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22271 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a Weak Cryptography for Passwords vulnerability that can lead to a security feature bypass. A low-privileged attacker can exploit this in order to decrypt a user's password. The attack complexity is high since a successful exploitation requires to already have in possession this encrypted secret. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.3 MEDIUM V2.0:(not available) |
| CVE-2023-22269 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22266 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22265 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22264 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22263 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22262 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22261 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22260 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22259 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:14 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22258 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22257 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22256 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22254 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22253 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-22252 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-21616 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-21615 |
Experience Manager versions 6.5.15.0 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: March 22, 2023; 1:15:13 PM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2022-44510 |
Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. Published: December 22, 2022; 12:15:09 PM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |