2 matches found
CVE-2022-35693
CVE-2022-35693 concerns Adobe Experience Manager (AEM) up to version 6.5.14 and earlier, with a reflected XSS vulnerability. The issue arises from how vulnerable pages reference user-controlled data, allowing a low-privileged attacker to lure a victim to a crafted URL and cause arbitrary JavaScri...
CVE-2022-35693 AEM Reflected XSS Arbitrary code execution
Adobe Experience Manager version 6.5.14 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...