Adobe Experience Manager versions 6.4 and 6.3 have a stored cross site scripting vulnerability. Successful exploitation could lead to privilege escalation.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8080
Reference (s):
- https://helpx.adobe.com/security/products/experience-manager/apsb19-48.html