Total CVEs

141,537

Critical Severity

3,871

High Severity

13,923

Last 7 Days

1,614
Quick preset (or use dates below)
Clear Filters
Showing 9,941 - 9,960 of 14,444 CVEs
CVE-2026-27237 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27236 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27235 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27234 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page ...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27233 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27232 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27231 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page ...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27230 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27229 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page ...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27228 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27226 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page ...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27225 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brows...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27224 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page ...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-27223 MEDIUM - 5.4

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page ...

Vendor: Adobe
Product: Adobe Experience Manager
Published: Mar 11, 2026
Source: NVD
CVE-2026-31960 MEDIUM - 5.3

Quill provides simple mac binary signing and notarization from any platform. Quill before version v0.7.1 has unbounded reads of HTTP response bodies during the Apple notarization process. Exploitation requires the ability to modify API responses from Apple's notarization service, which is not p...

Vendor: go
Product: github.com/anchore/quill
Published: Mar 11, 2026
Source: GitHub
CVE-2026-31961 MEDIUM - 5.5

Quill provides simple mac binary signing and notarization from any platform. Quill before version v0.7.1 contains an unbounded memory allocation vulnerability when parsing Mach-O binaries. Exploitation requires that Quill processes an attacker-supplied Mach-O binary, which is most likely in environm...

Vendor: go
Product: github.com/anchore/quill
Published: Mar 11, 2026
Source: GitHub
CVE-2026-31959 MEDIUM - 5.3

Quill provides simple mac binary signing and notarization from any platform. Quill before version v0.7.1 contains a Server-Side Request Forgery (SSRF) vulnerability when attempting to fetch the Apple notarization submission logs. Exploitation requires the ability to modify API responses from Apple&#...

Vendor: go
Product: github.com/anchore/quill
Published: Mar 11, 2026
Source: GitHub
CVE-2026-31901 MEDIUM - 5.3

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 8.6.34 and 9.6.0-alpha.8, the email verification endpoint (/verificationEmailRequest) returns distinct error responses depending on whether an email address belongs to an existing user, i...

Vendor: npm
Product: parse-server
Published: Mar 11, 2026
Source: GitHub
CVE-2026-31868 MEDIUM - 6.1

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.4 and 8.6.30, an attacker can upload a file with a file extension or content type that is not blocked by the default configuration of the Parse Server fileUpload.fileExtension...

Vendor: npm
Product: parse-server
Published: Mar 11, 2026
Source: GitHub
CVE-2026-2569 MEDIUM - 6.4

The Dear Flipbook – PDF Flipbook, 3D Flipbook, PDF embed, PDF viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via PDF page labels in all versions up to, and including, 2.4.20 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

Published: Mar 11, 2026
Source: NVD