CVE-2016-6934
- EPSS 0.9%
- Veröffentlicht 15.12.2016 06:59:27
- Zuletzt bearbeitet 06.05.2026 22:30:45
Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the PMAdmin module that could be used in cross-site scripting attacks.
CVE-2016-6933
- EPSS 1.19%
- Veröffentlicht 15.12.2016 06:59:26
- Zuletzt bearbeitet 06.05.2026 22:30:45
Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the AACComponent that could be used in cross-site scripting attacks.
- EPSS 1.68%
- Veröffentlicht 16.06.2011 23:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
Adobe LiveCycle Data Services 3.1 and earlier, LiveCycle 9.0.0.2 and earlier, and BlazeDS 4.0.1 and earlier do not properly restrict creation of classes during deserialization of (1) AMF and (2) AMFX data, which allows attackers to have an unspecifie...
- EPSS 2.08%
- Veröffentlicht 16.06.2011 23:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
Adobe LiveCycle Data Services 3.1 and earlier, LiveCycle 9.0.0.2 and earlier, and BlazeDS 4.0.1 and earlier do not properly handle object graphs, which allows attackers to cause a denial of service via unspecified vectors, related to a "complex objec...
CVE-2009-3960
- EPSS 90.43%
- Veröffentlicht 15.02.2010 18:30:00
- Zuletzt bearbeitet 21.04.2026 21:12:29
Unspecified vulnerability in BlazeDS 3.2 and earlier, as used in LiveCycle 8.0.1, 8.2.1, and 9.0, LiveCycle Data Services 2.5.1, 2.6.1, and 3.0, Flex Data Services 2.0.1, and ColdFusion 7.0.2, 8.0, 8.0.1, and 9.0, allows remote attackers to obtain se...