CVE-2022-42354
CVE-2022-42354 describes a reflected XSS in Adobe Experience Manager (AEM) 6.5.14 and earlier: a low-privileged attacker can convince a victim to visit a crafted URL, causing arbitrary JavaScript to run in the victim’s browser. Connected sources confirm this is an AEM page-context XSS vulnerabili...