1 results (0.001 seconds)
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-27205 – Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
https://notcve.org/view.php?id=CVE-2025-27205
08 Apr 2025 — Adobe Experience Manager Screens versions FP11.3 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. Exploitation of this issue requires user interaction in that a victim must open a malicious link. • https://helpx.adobe.com/security/products/aem-screens/apsb25-32.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •