CVE-2025-30316

Name of the Vulnerable Software and Affected Versions: Adobe Connect versions 12.8 and earlier

Description: A stored Cross-Site Scripting (XSS) issue affects Adobe Connect, allowing a low-privileged attacker to inject malicious scripts into vulnerable form fields. When a victim browses to the page containing the vulnerable field, malicious JavaScript may be executed in their browser.

Recommendations: For Adobe Connect versions 12.8 and earlier, consider disabling the vulnerable form fields until a patch is available to prevent the injection of malicious scripts. Restrict access to sensitive pages that may contain the vulnerable fields to minimize the risk of exploitation.