Vulnetix
Try Vulnetix Request Demo
CVE-2025-64872 PUBLISHED CVSS 4.800000190734863 MEDIUM

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

EPSS 0.09% · 25.5th percentile

Risk Scores

CVSS v3.1
4.800000190734863
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
EPSS Score
0.09%
25.5th percentile

Affected Products

VendorProductVersions
AdobeAdobe Experience Manager0
adobeexperience_manager0, 0, 6.5

Timeline

References

Open in Interactive Console →