Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.4

MEDIUM

CVE-2025-64596

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64594

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64593

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64583

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitatio...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64841

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64607

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-13873

Stored Cross-Site Scripting (XSS) in the survey-import feature of ObjectPlanet Opinio 7.26 rev12562 on web application allows an attacker to inject arbitrary JavaScript code, which executes in the browsing context of any visitor accessing the compromised ...

Affected Products : opinio
Published: Dec. 02, 2025

Modified: Dec. 04, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64888

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitatio...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64881

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64875

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64869

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64857

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64626

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64620

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64616

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64609

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64604

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64615

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64576

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-55129

HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive Adserver was still vulnerable to impersonation attacks after the fix for CVE-2025-52672, via several alternate techniques. Homoglyphs based impersonation has be...

Affected Products : revive_adserver
Published: Dec. 02, 2025

Modified: Dec. 02, 2025

Vuln Type: Authentication

Showing 20 of 4800 Results

Browse by Apps

Latest CVE Feed

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable