2 matches found
CVE-2022-35664
CVE-2022-35664 is a reflected XSS in Adobe Experience Manager (AEM) versions 6.5.13.0 and earlier. The vulnerability arises from insufficient input handling on vulnerable pages, allowing a remote attacker to lure a user to a crafted URL and trigger malicious JavaScript executed in the victim’s br...
CVE-2022-35664 AEM Reflected XSS Arbitrary code execution
Adobe Experience Manager versions 6.5.13.0 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's...