Kentico Cms Security Vulnerabilities and Issues — Kentico Cms CVE List

Lucene search

KenticoKentico Cms

3 matches found

CVE•added 2018/03/23 3:29 p.m.•72 views

CVE-2017-17736

Kentico 9.0 before 9.0.51 and 10.0 before 10.0.48 allows remote attackers to obtain Global Administrator access by visiting CMSInstall/install.aspx and then navigating to the CMS Administration Dashboard.

9.8CVSS9.3AI score0.9106EPSS

CVE•added 2018/03/19 2:29 p.m.•49 views

CVE-2018-6843

Kentico 10 before 10.0.50 and 11 before 11.0.3 has SQL injection in the administration interface.

7.2CVSS7.4AI score0.0026EPSS

CVE•added 2018/03/19 2:29 p.m.•38 views

CVE-2018-6842

Kentico 10 before 10.0.50 and 11 before 11.0.3 has XSS in which a crafted URL results in improper construction of a system page.

5.4CVSS5.2AI score0.00206EPSS