2 matches found
CVE-2022-42348 AEM Reflected XSS Arbitrary code execution
Adobe Experience Manager version 6.5.14 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2022-42348
CVE-2022-42348 affects Adobe Experience Manager (AEM) 6.5.14 and earlier, through a reflected Cross-Site Scripting (XSS) flaw that can execute malicious JavaScript in a victim’s browser when a crafted URL is visited. The issue is demonstrated in AEM’s handling of vulnerable pages, with exploitati...