Stored Cross-Site Scripting Vulnerability in Adobe Experience Manager Forms
CVE-2018-19724
6.1MEDIUM
Summary
Adobe Experience Manager Forms versions 6.2, 6.3, and 6.4 are susceptible to a stored cross-site scripting vulnerability. This security flaw allows an attacker to inject malicious scripts into web pages viewed by other users. If exploited, this vulnerability could enable unauthorized access to sensitive information, ultimately compromising user data and leading to significant security risks.
Affected Version(s)
Adobe Experience Manager Forms Adobe Experience Manager Forms versions 6.2, 6.3 and 6.4
References
CVSS V3.1
Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved