DOM-based Cross-Site Scripting Vulnerability in Adobe Connect
CVE-2025-49553
9.3CRITICAL
What is CVE-2025-49553?
Adobe Connect versions 12.9 and prior have a DOM-based Cross-Site Scripting vulnerability, allowing attackers to execute harmful scripts within a victim's browser. Exploitation necessitates user interaction, as victims must visit a specifically crafted web page. This exploitation may lead to session takeover, compromising user data and system integrity.
Affected Version(s)
Adobe Connect 0 <= 12.9