EPSS
Percentile
88.3%
acs-aem-commons is vulnerable to cross-site scripting (XSS). A remote attacker is able to inject and execute arbitrary Javascript in a user’s browser due to insecure handling of invalid JCR characters.
github.com/advisories/GHSA-f92j-qf46-p6vm
helpx.adobe.com/security/products/acrobat/apsb21-09.html