Product:

Connect

(Adobe)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 54
Date Id Summary Products Score Patch Annotated
2017-12-09 CVE-2017-11289 An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure. Connect 6.1
2017-12-09 CVE-2017-11288 An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure. Connect 6.1
2017-12-09 CVE-2017-11287 An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure. Connect 6.1
2016-11-08 CVE-2016-7851 Adobe Connect version 9.5.6 and earlier does not adequately validate input in the events registration module. This vulnerability could be exploited in cross-site scripting attacks. Connect 6.1
2016-05-29 CVE-2016-4118 Untrusted search path vulnerability in the installer in Adobe Connect Add-In before 11.9.976.291 on Windows allows local users to gain privileges via unspecified vectors. Connect 7.8
2016-02-10 CVE-2016-0950 Adobe Connect before 9.5.2 allows remote attackers to spoof the user interface via unspecified vectors. Connect 5.3
2016-02-10 CVE-2016-0949 Adobe Connect before 9.5.2 allows remote attackers to have an unspecified impact via a crafted parameter in a URL. Connect 9.8
2016-02-10 CVE-2016-0948 Cross-site request forgery (CSRF) vulnerability in Adobe Connect before 9.5.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Connect 8.8
2015-06-13 CVE-2015-0344 Cross-site scripting (XSS) vulnerability in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Connect N/A
2015-06-13 CVE-2015-0343 Cross-site scripting (XSS) vulnerability in admin/home/homepage/search in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via the query parameter. Connect N/A