Adobe Experience Manager Forms versions 6.2, 6.1, 6.0 have an information disclosure vulnerability resulting from abuse of the pre-population service in AEM Forms.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NAdobe Experience Manager Forms
APPAdobe6.06.16.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2025-54253CRITICAL10.0⚠ KEVPL ✓ten sam produkt
RCE przez błędną konfigurację w Adobe Experience Manager Forms
CVE-2020-9732CRITICAL9.0ten sam produkt
The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.2 (and below) are affected by a stored XSS vul...
CVE-2025-54254HIGH8.6ten sam produkt
Adobe Experience Manager versions 6.5.23 and earlier are affected by an Improper Restriction of XML External E...
CVE-2020-9733HIGH7.5ten sam produkt
An AEM java servlet in AEM versions 6.5.5.0 (and below) and 6.4.8.1 (and below) executes with the permissions ...
CVE-2019-8089MEDIUM6.1ten sam produkt
Adobe Experience Manager Forms versions 6.3-6.5 have a reflected cross-site scripting vulnerability. Successfu...