CVE-2025-64888

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.23 and earlier

Description A DOM-based Cross-Site Scripting (XSS) issue exists in Adobe Experience Manager. A low privileged attacker could exploit this to execute malicious scripts within the context of a user's browser. User interaction, such as visiting a specially crafted URL or interacting with a manipulated web page, is required for exploitation.

Recommendations Update Adobe Experience Manager to a version later than 6.5.23.