Stored Cross-Site Scripting Vulnerability in Adobe Experience Manager
CVE-2025-47073
5.4MEDIUM
What is CVE-2025-47073?
Adobe Experience Manager versions 6.5.22 and earlier are susceptible to a stored Cross-Site Scripting (XSS) vulnerability. This flaw enables low-privileged attackers to inject harmful scripts into vulnerable form fields. When users visit a page containing these fields, malicious JavaScript can execute in their browsers, potentially compromising user data and session information.
Affected Version(s)
Adobe Experience Manager 0 <= 6.5.22