2 matches found
CVE-2025-24414
creationtimestamp| type| source ---|---|--- 2025-02-11 18:19:14+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbieqbe52p 2025-02-11 18:48:46+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113986746302908138...
CVE-2025-24414 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed...