Cross-site scripting (XSS) vulnerability in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
https://helpx.adobe.com/adobe-connect/release-note/connect-94-release-notes.html#Issues%20Resolved