Kentico’s administration interface is vulnerable to SQL injection. This is due to SQL queries being built from user-controlled input in an unsafe manner.
CPE | Name | Operator | Version |
---|---|---|---|
kentico.libraries | le | 11.0.2 | |
kentico.libraries | le | 10.0.49 | |
kentico.libraries.web.ui | le | 11.0.2 | |
kentico.libraries.web.ui | le | 10.0.49 |