VYPR
Medium severity6.1NVD Advisory· Published Dec 15, 2016· Updated Jun 17, 2026

CVE-2016-6933

CVE-2016-6933

Description

Adobe Experience Manager Forms versions 6.2 and earlier, LiveCycle 11.0.1, LiveCycle 10.0.4 have an input validation issue in the AACComponent that could be used in cross-site scripting attacks.

Affected products

8
  • Range: <=6.2
  • cpe:2.3:a:adobe:experience_manager:6.0.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:adobe:experience_manager:6.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:experience_manager:6.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:experience_manager:6.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:adobe:livecycle:10.0.4:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:adobe:livecycle:10.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:livecycle:11.0.1:*:*:*:*:*:*:*
    • (no CPE)range: 11.0.1, 10.0.4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.