CVE-2026-27249
Adobe Experience Manager (AEM) 6.5.x up to 6.5.23 and earlier is affected by a stored XSS vulnerability (CVE-2026-27249) in form field handling due to insufficient input sanitization/escaping. A low-privilege attacker can cause malicious JavaScript to run in victims’ browsers when they view vulne...