4 matches found
CVE-2018-7205
Reflected Cross-Site Scripting vulnerability in "Design" on "Edit device layout" in Kentico 9 through 11 allows remote attackers to execute malicious JavaScript via a malicious devicename parameter in a link that is entered via the "Pages - Edit template properties - Device Layouts - Create devic...
CVE-2018-7205
Kentico CMS versions 9–11 are affected by a reflected cross-site scripting (XSS) vulnerability in the Design/Device Layout feature (Edit device layout). The issue allows remote attackers to inject and execute arbitrary JavaScript via a malicious devicename parameter in links created through Pages...
Kentico CMS 11 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Kentico CMS version 9 through 11 - Cross-Site Scripting Reflect Software Link: https://www.kentico.com Exploit Author: Keerati T. CVE: CVE-2018-7205 Category: webapps 1. Description Kentico is the only fully integrated ASP.NET...
Kentico CMS 11 Cross Site Scripting
Exploit Title: Kentico CMS version 9 through 11 - Cross-Site Scripting Reflect Date: 18-02-2018 Software Link: https://www.kentico.com Exploit Author: Keerati T. CVE: CVE-2018-7205 Category: webapps 1. Description Kentico is the only fully integrated ASP.NET CMS, E-commerce, and Online Marketing...