Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.4

MEDIUM

CVE-2025-64814

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64820

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64823

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64839

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64850

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64853

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64579

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64580

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64581

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-53523

Stored cross-site scripting vulnerabilities exist in GroupSession Free edition prior to ver5.3.0, GroupSession byCloud prior to ver5.3.3, and GroupSession ZION prior to ver5.3.2. A logged-in user can prepare a malicious page or URL, and an arbitrary scrip...

Affected Products :
Published: Dec. 12, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64545

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitatio...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-66284

Stored cross-site scripting vulnerabilities exist in GroupSession Free edition prior to ver5.7.1, GroupSession byCloud prior to ver5.7.1, and GroupSession ZION prior to ver5.7.1. A logged-in user can prepare a malicious page or URL, and an arbitrary scrip...

Affected Products :
Published: Dec. 12, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64566

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitatio...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-67490

The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the...

Affected Products : nextjs-auth0
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Authentication
5.4

MEDIUM

CVE-2025-64544

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitatio...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64582

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64612

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64789

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64799

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64803

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting

Showing 20 of 4958 Results

Browse by Apps

Latest CVE Feed

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable