Stored Cross-Site Scripting Vulnerability in Adobe Experience Manager
CVE-2026-27233
5.4MEDIUM
What is CVE-2026-27233?
Adobe Experience Manager versions up to 6.5.23 contain a stored Cross-Site Scripting (XSS) vulnerability that may allow low-privileged attackers to inject and execute harmful JavaScript code in users' browsers. This occurs through vulnerable form fields where malicious scripts can be embedded, potentially leading to unauthorized access and data theft. Ensuring your version is up to date is crucial for maintaining web application security.
Affected Version(s)
Adobe Experience Manager 0 <= 6.5.23