cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-49550,https://securityvulnerability.io/vulnerability/CVE-2024-49550,Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79),"Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.",Adobe,Adobe Connect,6.1,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2024-12-10T21:15:00.000Z,0
CVE-2024-54045,https://securityvulnerability.io/vulnerability/CVE-2024-54045,Reflected XSS Vulnerability in Adobe Connect Affecting Multiple Versions,"A reflected Cross-Site Scripting (XSS) vulnerability exists in Adobe Connect versions 12.6 and 11.4.7 and earlier. An unauthenticated attacker could exploit this vulnerability by persuading a victim to click a malicious link that references a vulnerable page. Upon accessing this link, arbitrary JavaScript code may be executed within the victim's browser, potentially leading to unauthorized actions or information disclosure.",Adobe,Adobe Connect,6.1,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2024-12-10T21:15:00.000Z,0
CVE-2024-54034,https://securityvulnerability.io/vulnerability/CVE-2024-54034,Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79),"Adobe Connect versions 12.6, 11.4.7, and earlier versions have a reflected Cross-Site Scripting vulnerability that allows attackers to execute malicious JavaScript within a victim's browser. This vulnerability requires the victim to visit a specially crafted URL, facilitating potential session takeover and compromising user confidentiality and integrity. The complexity of the attack is heightened as it depends on the target using a specific browser.",Adobe,Adobe Connect,9.3,CRITICAL,0.0009800000116229057,false,,false,false,false,,,false,false,,2024-12-10T21:15:00.000Z,0
CVE-2024-54032,https://securityvulnerability.io/vulnerability/CVE-2024-54032,Adobe Connect | Cross-site Scripting (Stored XSS) (CWE-79),"Adobe Connect versions 12.6, 11.4.7, and earlier are vulnerable to a stored Cross-Site Scripting (XSS) flaw. This vulnerability enables attackers to inject malicious JavaScript code into user-input form fields, potentially leading to the execution of these scripts in the browsers of users accessing the affected pages. A successful exploitation may allow attackers to carry out session hijacking and compromise user confidentiality and integrity.",Adobe,Adobe Connect,9.3,CRITICAL,0.0009800000116229057,false,,false,false,false,,,false,false,,2024-12-10T21:15:00.000Z,0
CVE-2024-54037,https://securityvulnerability.io/vulnerability/CVE-2024-54037,Adobe Connect | Cross-site Scripting (DOM-based XSS) (CWE-79),"Adobe Connect versions 12.6, 11.4.7, and prior are susceptible to a DOM-based Cross-Site Scripting (XSS) vulnerability. This issue can be exploited by an attacker through the manipulation of a DOM element via a crafted URL or malicious user input, allowing the execution of arbitrary code within the victim's browser session. To successfully execute this attack, user interaction is necessary; the victim must visit a compromised link or submit data through a manipulated form. The vulnerability's exploitation hinges on the victim permitting all popups, which elevates the complexity of the attack. Attackers leveraging this vulnerability can potentially execute harmful scripts that may lead to session hijacking and compromise sensitive information.",Adobe,Adobe Connect,8.1,HIGH,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-12-10T21:15:00.000Z,0
CVE-2023-29306,https://securityvulnerability.io/vulnerability/CVE-2023-29306,Adobe Connect Reflected Cross-Site Scripting (XSS) Arbitrary code execution,"Adobe Connect versions 12.3 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.",Adobe,Adobe Connect,6.1,MEDIUM,0.0007099999929778278,false,,false,false,false,,,false,false,,2023-09-13T09:15:00.000Z,0
CVE-2023-29305,https://securityvulnerability.io/vulnerability/CVE-2023-29305,Adobe Connect Reflected Cross-Site Scripting (XSS) Arbitrary code execution,"Adobe Connect versions 12.3 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.",Adobe,Adobe Connect,6.1,MEDIUM,0.0007099999929778278,false,,false,false,false,,,false,false,,2023-09-13T09:15:00.000Z,0
CVE-2018-12805,https://securityvulnerability.io/vulnerability/CVE-2018-12805,,Adobe Connect versions 9.7.5 and earlier have an Insecure Library Loading vulnerability. Successful exploitation could lead to privilege escalation.,Adobe,Adobe Connect 9.7.5 And Earlier,9.8,CRITICAL,0.002589999930933118,false,,false,false,false,,,false,false,,2018-07-20T19:00:00.000Z,0
CVE-2018-12804,https://securityvulnerability.io/vulnerability/CVE-2018-12804,,Adobe Connect versions 9.7.5 and earlier have an Authentication Bypass vulnerability. Successful exploitation could lead to session hijacking.,Adobe,Adobe Connect 9.7.5 And Earlier,9.8,CRITICAL,0.0040799998678267,false,,false,false,false,,,false,false,,2018-07-20T19:00:00.000Z,0
CVE-2018-4923,https://securityvulnerability.io/vulnerability/CVE-2018-4923,,Adobe Connect versions 9.7 and earlier have an exploitable OS Command Injection. Successful exploitation could lead to arbitrary file deletion.,Adobe,Adobe Connect 9.7 And Earlier,9.1,CRITICAL,0.015449999831616879,false,,false,false,false,,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2018-4921,https://securityvulnerability.io/vulnerability/CVE-2018-4921,,Adobe Connect versions 9.7 and earlier have an exploitable unrestricted SWF file upload vulnerability. Successful exploitation could lead to information disclosure.,Adobe,Adobe Connect 9.7 And Earlier,6.1,MEDIUM,0.0021299999207258224,false,,false,false,false,,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2018-4994,https://securityvulnerability.io/vulnerability/CVE-2018-4994,,Adobe Connect versions 9.7.5 and earlier have an exploitable Authentication Bypass vulnerability. Successful exploitation could lead to sensitive information disclosure.,Adobe,Adobe Connect 9.7.5 And Earlier,7.5,HIGH,0.0021800000686198473,false,,false,false,false,,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2017-11289,https://securityvulnerability.io/vulnerability/CVE-2017-11289,,An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.,Adobe,Adobe Connect 9.6.2 And Earlier Versions,6.1,MEDIUM,0.0018599999602884054,false,,false,false,false,,,false,false,,2017-12-09T06:29:00.000Z,0
CVE-2017-11287,https://securityvulnerability.io/vulnerability/CVE-2017-11287,,An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.,Adobe,Adobe Connect 9.6.2 And Earlier Versions,6.1,MEDIUM,0.0018599999602884054,false,,false,false,false,,,false,false,,2017-12-09T06:00:00.000Z,0
CVE-2017-11290,https://securityvulnerability.io/vulnerability/CVE-2017-11290,,An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A UI Redress (or Clickjacking) vulnerability exists. This issue has been resolved by adding a feature that enables Connect administrators to protect users from UI redressing (or clickjacking) attacks.,Adobe,Adobe Connect 9.6.2 And Earlier Versions,6.1,MEDIUM,0.0022799998987466097,false,,false,false,false,,,false,false,,2017-12-09T06:00:00.000Z,0
CVE-2017-11288,https://securityvulnerability.io/vulnerability/CVE-2017-11288,,An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.,Adobe,Adobe Connect 9.6.2 And Earlier Versions,6.1,MEDIUM,0.0018599999602884054,false,,false,false,false,,,false,false,,2017-12-09T06:00:00.000Z,0
CVE-2017-11291,https://securityvulnerability.io/vulnerability/CVE-2017-11291,,An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A Server-Side Request Forgery (SSRF) vulnerability exists that could be abused to bypass network access controls.,Adobe,Adobe Connect 9.6.2 And Earlier Versions,10,CRITICAL,0.002360000042244792,false,,false,false,false,,,false,false,,2017-12-09T06:00:00.000Z,0
CVE-2017-3102,https://securityvulnerability.io/vulnerability/CVE-2017-3102,,Adobe Connect versions 9.6.1 and earlier have a reflected cross-site scripting vulnerability. Successful exploitation could lead to a reflected cross-site scripting attack.,Adobe,Adobe Connect 9.6.1 And Earlier.,6.1,MEDIUM,0.0020000000949949026,false,,false,false,false,,,false,false,,2017-07-17T13:18:00.000Z,0
CVE-2017-3101,https://securityvulnerability.io/vulnerability/CVE-2017-3101,,Adobe Connect versions 9.6.1 and earlier have a clickjacking vulnerability. Successful exploitation could lead to a clickjacking attack.,Adobe,Adobe Connect 9.6.1 And Earlier.,7.5,HIGH,0.005040000192821026,false,,false,false,false,,,false,false,,2017-07-17T13:18:00.000Z,0
CVE-2017-3103,https://securityvulnerability.io/vulnerability/CVE-2017-3103,,Adobe Connect versions 9.6.1 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to a stored cross-site scripting attack.,Adobe,Adobe Connect 9.6.1 And Earlier.,6.1,MEDIUM,0.0020000000949949026,false,,false,false,false,,,false,false,,2017-07-14T05:00:00.000Z,0
CVE-2016-7851,https://securityvulnerability.io/vulnerability/CVE-2016-7851,,Adobe Connect version 9.5.6 and earlier does not adequately validate input in the events registration module. This vulnerability could be exploited in cross-site scripting attacks.,Adobe,Adobe Connect 9.5.6 And Earlier Versions,6.1,MEDIUM,0.004410000052303076,false,,false,false,false,,,false,false,,2016-11-08T17:45:00.000Z,0