Adobe Experience Manager — Vulnerabilities & Security Advisories 965

All 965 CVE vulnerabilities found in Adobe Experience Manager, with AI-generated Chinese analysis, references, and POCs.

This page documents security vulnerabilities associated with Adobe Experience Manager, focusing on weakness types such as cross-site scripting, injection flaws, and privilege escalation. It aggregates data from major databases and vendor advisories to provide a comprehensive view of the product’s security posture over time. The content covers vulnerabilities identified from the initial release of the platform through the most recent updates, ensuring that historical context is preserved alongside current risk assessments. This broad temporal scope allows users to analyze trends in vulnerability disclosure and patching velocity across different versions of the software. By consolidating scattered information, the page serves as a centralized resource for security professionals and administrators responsible for maintaining the integrity of Adobe Experience Manager deployments. Visitors can discover detailed information on how specific weakness classes manifest within the product’s architecture, enabling deeper technical understanding beyond high-level summaries. The page facilitates tracking of Adobe’s security advisories, allowing users to correlate reported issues with official patch releases and mitigation strategies. Additionally, it supports looking up the complete vulnerability history for the product, helping teams assess legacy risks and prioritize remediation efforts based on the severity and exploitability of past findings. This structured approach to vulnerability aggregation aids in informed decision-making regarding system hardening, upgrade paths, and ongoing compliance monitoring for organizations relying on this enterprise content management solution.

Vendor: Adobe

CVE ID	Title	CVSS	Severity	Published
CVE-2025-46986	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46898	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46893	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46929	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46983	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46916	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46953	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47032	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46861	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47008	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46926	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47044	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47014	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46943	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46889	Adobe Experience Manager \| Improper Access Control (CWE-284) CWE-284	5.4	Medium	2025-06-10
CVE-2025-46946	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47094	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) CWE-79	6.1	Medium	2025-06-10
CVE-2025-47031	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47090	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47084	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46857	Adobe Experience Manager \| Cross-site Scripting (Reflected XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47002	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47089	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46967	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46963	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46873	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47068	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46891	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47000	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46840	Adobe Experience Manager \| Improper Authorization (CWE-285) CWE-285	8.7	High	2025-06-10

All 965 known CVE vulnerabilities affecting Adobe Experience Manager with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

Adobe Experience Manager — Vulnerabilities & Security Advisories 965