2 matches found
Kentico CMS 10.x < 10.0.50 / 11.x < 11.0.3 Multiple Vulnerabilities
According to its self-reported version number, the version of Kentico CMS on the remote host is 10.x prior to 10.0.50 or 11.x prior to 11.0.3. It is, therefore, affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exists due to improper validation of user-supplied inp...
CVE-2018-6842
Kentico CMS is affected by CVE-2018-6842: XSS due to improper construction/validation when crafting a URL. Affected versions are Kentico 10.x before 10.0.50 and 11.x before 11.0.3. Impact is client-side script execution in authenticated/selected contexts via crafted URLs. Remediation per document...