A vulnerability was found in Adobe Acrobat PDF Extension up to 26.5.2.2 and classified as problematic . This affects an unknown function of the component URL Handler . Executing a manipulation can lead to cross site scripting. This vulnerability is registered as CVE-2026-48294 . It is possible to launch the attack remotely. No exploit is available.