Adobe Experience Manager — Vulnerabilities & Security Advisories 965

All 965 CVE vulnerabilities found in Adobe Experience Manager, with AI-generated Chinese analysis, references, and POCs.

This page documents security vulnerabilities associated with Adobe Experience Manager, focusing on weakness types such as cross-site scripting, injection flaws, and privilege escalation. It aggregates data from major databases and vendor advisories to provide a comprehensive view of the product’s security posture over time. The content covers vulnerabilities identified from the initial release of the platform through the most recent updates, ensuring that historical context is preserved alongside current risk assessments. This broad temporal scope allows users to analyze trends in vulnerability disclosure and patching velocity across different versions of the software. By consolidating scattered information, the page serves as a centralized resource for security professionals and administrators responsible for maintaining the integrity of Adobe Experience Manager deployments. Visitors can discover detailed information on how specific weakness classes manifest within the product’s architecture, enabling deeper technical understanding beyond high-level summaries. The page facilitates tracking of Adobe’s security advisories, allowing users to correlate reported issues with official patch releases and mitigation strategies. Additionally, it supports looking up the complete vulnerability history for the product, helping teams assess legacy risks and prioritize remediation efforts based on the severity and exploitability of past findings. This structured approach to vulnerability aggregation aids in informed decision-making regarding system hardening, upgrade paths, and ongoing compliance monitoring for organizations relying on this enterprise content management solution.

Vendor: Adobe

CVE ID	Title	CVSS	Severity	Published
CVE-2025-46990	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46895	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46890	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46923	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46988	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46924	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46975	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46956	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46848	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46982	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47071	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47039	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46906	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46850	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46939	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46871	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47036	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46915	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47056	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46888	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47066	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46855	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46872	Adobe Experience Manager \| Cross-site Scripting (DOM-based XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47004	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47070	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47079	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46841	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-46919	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47019	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10
CVE-2025-47021	Adobe Experience Manager \| Cross-site Scripting (Stored XSS) (CWE-79) CWE-79	5.4	Medium	2025-06-10

All 965 known CVE vulnerabilities affecting Adobe Experience Manager with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

Adobe Experience Manager — Vulnerabilities & Security Advisories 965