5 matches found
CVE-2025-27205
Adobe Experience Manager Screens FP11.3 and earlier are affected by a stored XSS (CWE-79) in vulnerable form fields. Exploitation requires a user to click a malicious link; impact is execution of JavaScript in the victim’s browser. Remediation per APSB25-32 is a security update from Adobe (update...
CVE-2026-34623
Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based XSS vulnerability (CWE-79). The issue arises from manipulating the DOM environment to execute malicious JavaScript in the victim’s browser. Exploitation requires user interaction: a victim must visit a specia...
CVE-2026-34625
Adobe Experience Manager is affected by a DOM-based Cross-Site Scripting (XSS) vulnerability (CWE-79) in versions 6.5.24, FP11.7 and earlier. The issue allows an attacker to manipulate the DOM to run malicious JavaScript in the victim’s browser, requiring user interaction (the victim must visit a...
CVE-2026-34624
Adobe Experience Manager (AEM) up to version 6.5.24, FP11.7 and earlier is affected by a DOM-based XSS (CWE-79). The issue allows an attacker to manipulate the DOM to execute malicious JavaScript in the victim’s browser, with exploitation requiring user interaction (victim visits a crafted webpag...
CVE-2026-27288
Adobe Experience Manager (AEM) is affected by a DOM-based XSS in versions 6.5.24 and FP11.7 and earlier. The issue arises from manipulating the DOM environment to execute malicious JavaScript in the victim’s browser, with exploitation requiring user interaction (the victim visits a crafted page)....