{"vulnerability": "CVE-2025-24428", "sightings": [{"uuid": "250fe583-6569-496d-aeaa-849d5219df12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24428", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbjktylp2a", "content": "", "creation_timestamp": "2025-02-11T18:19:54.190370Z"}, {"uuid": "a85c92a4-0b96-4c1a-bc9f-9ad9bf46c830", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24428", "type": "seen", "source": "https://t.me/cvedetector/17745", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24428 - Adobe Commerce Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24428 \nPublished : Feb. 11, 2025, 6:15 p.m. | 2\u00a0hours, 1\u00a0minute ago \nDescription : Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim\u2019s browser when they browse to the page containing the vulnerable field. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T21:33:37.000000Z"}]}