Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.3

HIGH

CVE-2025-12835

The WooMulti WordPress plugin through 17 does not validate a file parameter when deleting files, which could allow any authenticated users, such as subscriber to delete arbitrary files on the server....

Affected Products :
Published: Dec. 12, 2025

Modified: Dec. 12, 2025

Vuln Type: Path Traversal
5.4

MEDIUM

CVE-2025-64591

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64590

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64586

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64800

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64801

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64585

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64802

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64803

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64583

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitatio...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64789

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64790

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64791

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64597

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64792

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64793

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64794

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64796

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64797

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting
5.4

MEDIUM

CVE-2025-64799

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager
Published: Dec. 10, 2025

Modified: Dec. 12, 2025

Vuln Type: Cross-Site Scripting

Showing 20 of 4466 Results

Browse by Apps

Latest CVE Feed

7.3

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

5.4

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable