2 matches found
CVE-2017-17736
CVE-2017-17736 affects Kentico CMS: versions 9.0 up to 9.0.50 and 10.0 up to 10.0.47 are vulnerable to privilege escalation by visiting CMSInstall/install.aspx and navigating to the CMS Administration Dashboard, granting Global Administrator access. Root cause is an access-control bypass in the i...
Kentico CMS 9.x < 9.0.51, 10.x < 10.0.48 Access Control Bypass Vulnerability
Kentico CMS is prone to an access control bypass vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:kentico:kentico";...