CVE-2026-48371 in Commerce情報

要約

〜によって MITRE • 2026年07月15日

Adobe Commerce is affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's browser when they browse to the page containing the vulnerable field. Scope is changed.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

責任者

Adobe

予約する

2026年05月21日

モデレーション

承諾済み

エントリ

VDB-379168

EPSS

0.00000

アクティビティ

低い

ソース

Do you want to use VulDB in your project?

Use the official API to access entries easily!