2 matches found
CVE-2022-30678 AEM Reflected XSS Arbitrary code execution
Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...
CVE-2022-30678
Adobe Experience Manager (AEM) 6.5.13.0 and earlier is affected by a reflected XSS vulnerability. An attacker who can lure a user to a crafted URL referencing a vulnerable page can execute malicious JavaScript in the victim’s browser. Exploitation requires low attacker privileges and user interac...