XML Injection Vulnerability in Adobe Experience Manager
CVE-2025-54251
4.3MEDIUM
What is CVE-2025-54251?
Adobe Experience Manager versions up to 6.5.23.0 are susceptible to an XML Injection vulnerability. This allows low-privileged attackers to craft malicious XML queries, potentially leading to unauthorized write access and bypassing security mechanisms designed to protect the application. Organizations using affected versions should prioritize applying necessary patches to mitigate risks.
Affected Version(s)
Adobe Experience Manager 0 <= 6.5.23.0