VYPR
Medium severity6.1NVD Advisory· Published Feb 27, 2018· Updated Jun 17, 2026

CVE-2018-4876

CVE-2018-4876

Description

Adobe Experience Manager versions 6.3, 6.2, and 6.1 are vulnerable to cross-site scripting via a bypass of the Sling XSSAPI#getValidHref function.

Affected products

1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.