Adobe : Security Vulnerabilities, CVEs, Published In 2016 (XSS)
Adobe RoboHelp version 2015.0.3 and earlier, RoboHelp 11 and earlier have an input validation issue that could be used in cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.15%
Published
2016-12-15
Updated
2019-03-07
Adobe Experience Manager versions 6.1 and earlier have an input validation issue in the DAM create assets that could be used in cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.16%
Published
2016-12-15
Updated
2016-12-22
Adobe Experience Manager version 6.2 has an input validation issue in create Launch wizard that could be used in cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.16%
Published
2016-12-15
Updated
2016-12-22
Adobe Experience Manager versions 6.2 and earlier have an input validation issue in the WCMDebug filter that could be used in cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.16%
Published
2016-12-15
Updated
2016-12-22
Adobe Connect version 9.5.6 and earlier does not adequately validate input in the events registration module. This vulnerability could be exploited in cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.56%
Published
2016-11-08
Updated
2017-09-03
Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the PMAdmin module that could be used in cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.15%
Published
2016-12-15
Updated
2016-12-23
Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the AACComponent that could be used in cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.16%
Published
2016-12-15
Updated
2016-12-23
Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.40%
Published
2016-08-09
Updated
2017-08-16
Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, and 6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.28%
Published
2016-08-09
Updated
2017-08-16
Cross-site scripting (XSS) vulnerability in Adobe Brackets before 1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.35%
Published
2016-06-16
Updated
2016-06-17
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 20, 11 before Update 9, and 2016 before Update 2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.45%
Published
2016-06-16
Updated
2020-09-04
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.99%
Published
2016-05-11
Updated
2020-09-04
Cross-site scripting (XSS) vulnerability in Adobe Analytics AppMeasurement for Flash Library before 4.0.1, when debugTracking is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.63%
Published
2016-04-22
Updated
2016-12-03
Cross-site scripting (XSS) vulnerability in Adobe Experience Manager (AEM) 6.1.0 allows remote authenticated users to inject arbitrary web script or HTML via a folder title field that is mishandled in the Deletion popup dialog.
Max CVSS
6.1
EPSS Score
1.16%
Published
2016-02-10
Updated
2016-03-23
14 vulnerabilities found