CVE-2017-11296
CVE-2017-11296 affects Adobe Experience Manager 6.0–6.3 via a cross-site scripting vulnerability in Apache Sling Servlets Post 2.3.20. The root cause is improper input handling in that component, allowing a browser-based XSS attack. The vulnerability has been resolved in AEM; exploitation status ...