CVE-2026-48371 in Commerceالمعلومات

الملخص

بحسب MITRE • 15/07/2026

Adobe Commerce is affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's browser when they browse to the page containing the vulnerable field. Scope is changed.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

مسؤول

Adobe

حجز

21/05/2026

إفشاء

15/07/2026

الاعتدال

تمت الموافقة

إدخال

VDB-379168

EPSS

0.00000

KEV

لا

النشاطات

منخفض

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!