Lucene search
K

4 matches found

CNVD
CNVD
added 2025/12/25 12:0 a.m.9 views

Kentico Xperience SQL Injection Vulnerability

Kentico Xperience is a digital experience platform from Kentico. Kentico Xperience suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the Online Marketing Macro Method parameter. An attacker can exploit this vulnerability to...

8.8CVSS6.1AI score0.00259EPSS
Exploits0References1
NVD
NVD
added 2025/12/18 8:15 p.m.4 views

CVE-2021-47711

A SQL injection vulnerability in Kentico Xperience allows authenticated editors to inject malicious SQL queries via online marketing macro method parameters. This enables unauthorized database access and potential data manipulation by exploiting macro method input validation weaknesses...

8.8CVSS0.00259EPSS
Exploits0References2
OSV
OSV
added 2025/12/18 8:15 p.m.4 views

CVE-2021-47711

A SQL injection vulnerability in Kentico Xperience allows authenticated editors to inject malicious SQL queries via online marketing macro method parameters. This enables unauthorized database access and potential data manipulation by exploiting macro method input validation weaknesses...

8.7CVSS5.8AI score0.00259EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.5 views

Kentico Xperience SQL注入漏洞

Kentico Xperience is a digital experience platform from Kentico. Kentico Xperience suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the Online Marketing Macro Method parameter. An attacker can exploit this vulnerability to...

8.8CVSS5.9AI score0.00259EPSS
Exploits0References2
Rows per page
Query Builder