Lucene search
K

4 matches found

OSV
OSV
added 2025/12/18 8:15 p.m.2 views

CVE-2022-50684

An HTML injection vulnerability in Kentico Xperience allows attackers to inject malicious HTML values into form submission emails via unencoded form fields. Unencoded form values could enable HTML content execution in recipient email clients, potentially compromising email security...

6.1CVSS5.9AI score0.00165EPSS
Exploits0References2
NVD
NVD
added 2025/12/18 8:15 p.m.6 views

CVE-2022-50684

An HTML injection vulnerability in Kentico Xperience allows attackers to inject malicious HTML values into form submission emails via unencoded form fields. Unencoded form values could enable HTML content execution in recipient email clients, potentially compromising email security...

6.1CVSS0.00165EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/18 7:53 p.m.3 views

CVE-2022-50684 Kentico Xperience <= 13.0.71 Form Emails HTML Injection

An HTML injection vulnerability in Kentico Xperience allows attackers to inject malicious HTML values into form submission emails via unencoded form fields. Unencoded form values could enable HTML content execution in recipient email clients, potentially compromising email security...

6.1CVSS6.8AI score0.00165EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/28 12:0 a.m.3 views

PT-2024-40089 · Silverstripe · Silverstripe-Secureassets +1

Name of the Vulnerable Software and Affected Versions: silverstripe-userforms versions prior to 3.0.0 silverstripe-userforms version 3.0.0 when used with silverstripe-secureassets module Description: The issue allows CMS administrators to create public-facing forms with file upload abilities, whi...

4.3CVSS7.2AI score
Exploits0References4
Rows per page
Query Builder