Input validation

2018-03-1914:29:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.9%

Kentico 10 before 10.0.50 and 11 before 11.0.3 has XSS in which a crafted URL results in improper construction of a system page.

CPENameOperatorVersion
kentico_cmsge10.0
kentico_cmslt10.0.50
kentico_cmsge11.0
kentico_cmslt11.0.3

Name	Operator	Version
kentico_cms	ge	10.0
kentico_cms	lt	10.0.50
kentico_cms	ge	11.0
kentico_cms	lt	11.0.3

References

gist.github.com/zamous/c0afd7e21f3111de873c7bef6dcd9dd7