CVE-2025-49547 – Adobe Experience Manager Stored XSS

CVE ID : CVE-2025-49547

Published : July 8, 2025, 10:15 p.m. | 1 hour, 6 minutes ago

Description : Adobe Experience Manager versions 11.4 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. Scope is changed.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…