Stored Cross-Site Scripting Vulnerability in Adobe Experience Manager
CVE-2025-47057
5.4MEDIUM
What is CVE-2025-47057?
Adobe Experience Manager versions 6.5.22 and earlier contain a stored Cross-Site Scripting (XSS) vulnerability that can be exploited by low privileged attackers to inject harmful scripts into affected form fields. When users interact with these compromised fields, malicious JavaScript could execute in their browsers, leading to unauthorized actions or exposure of sensitive information. This vulnerability emphasizes the need for rigorous security practices in web applications to safeguard against potential exploits.
Affected Version(s)
Adobe Experience Manager 0 <= 6.5.22