Stored Cross-Site Scripting Vulnerability in Adobe Commerce Products
CVE-2025-47110
9.1CRITICAL
What is CVE-2025-47110?
Adobe Commerce products are susceptible to a stored XSS vulnerability that allows high-privilege attackers to inject harmful JavaScript into vulnerable form fields. This could result in the execution of malicious scripts in users' browsers when they access affected pages, posing significant risks to website security and user data integrity. It's crucial for administrators to review and update their systems to mitigate this risk.
Affected Version(s)
Adobe Commerce 0 <= 2.4.4-p13