CVE-2025-47054

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.22 and earlier

Description: Adobe Experience Manager is susceptible to a DOM-based Cross-Site Scripting (XSS) issue. A low-privileged attacker could exploit this by manipulating the Document Object Model (DOM) environment to execute malicious JavaScript within a victim’s browser. Exploitation requires user interaction, specifically a victim visiting a specially crafted web page.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.