CVE-2016-7851
- EPSS 5.71%
- Veröffentlicht 08.11.2016 17:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
Adobe Connect version 9.5.6 and earlier does not adequately validate input in the events registration module. This vulnerability could be exploited in cross-site scripting attacks.
CVE-2016-4118
- EPSS 0.64%
- Veröffentlicht 30.05.2016 01:59:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
Untrusted search path vulnerability in the installer in Adobe Connect Add-In before 11.9.976.291 on Windows allows local users to gain privileges via unspecified vectors.
CVE-2016-0950
- EPSS 0.73%
- Veröffentlicht 10.02.2016 20:59:03
- Zuletzt bearbeitet 12.04.2025 10:46:40
Adobe Connect before 9.5.2 allows remote attackers to spoof the user interface via unspecified vectors.
- EPSS 2.4%
- Veröffentlicht 10.02.2016 20:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
Adobe Connect before 9.5.2 allows remote attackers to have an unspecified impact via a crafted parameter in a URL.
CVE-2016-0948
- EPSS 0.29%
- Veröffentlicht 10.02.2016 20:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site request forgery (CSRF) vulnerability in Adobe Connect before 9.5.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2015-0344
- EPSS 0.64%
- Veröffentlicht 13.06.2015 15:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2015-0343
- EPSS 0.65%
- Veröffentlicht 13.06.2015 15:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in admin/home/homepage/search in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via the query parameter.