CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

45,414 vulnerabilities with CWE-79
CVE-2024-43754 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - DOM-based Cross-Site Scripting
CVSS 5.4
CVE-2024-43752 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43751 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43750 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43749 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43748 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43747 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43746 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43745 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Reflected Cross-Site Scripting
CVSS 5.4
CVE-2024-43744 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43743 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43742 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43740 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43739 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43738 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - DOM-based Cross-Site Scripting
CVSS 5.4
CVE-2024-43737 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43736 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43735 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Reflected Cross-Site Scripting
CVSS 5.4
CVE-2024-43734 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43733 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - DOM-based Cross-Site Scripting via Crafted URL
CVSS 5.4
CVE-2024-43732 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - DOM-based Cross-Site Scripting
CVSS 4.6
CVE-2024-43730 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43728 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43727 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-43726 MEDIUM
Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
Details
Vulnerabilities 45,414
Exploit Likelihood High