Reflected Cross-Site Scripting Vulnerability in Adobe Connect
CVE-2025-43567
9.3CRITICAL
What is CVE-2025-43567?
Adobe Connect has a vulnerability that allows attackers to exploit reflected Cross-Site Scripting (XSS) in versions 12.8 and earlier. By injecting malicious scripts into vulnerable form fields, an attacker could execute harmful JavaScript in the browser of a user visiting the compromised page. This exploitation can potentially result in session hijacking, jeopardizing user data confidentiality and integrity.
Affected Version(s)
Adobe Connect 0 <= 12.8