Kentico is vulnerable to cross-site scripting (XSS). The vulnerability exists because user-provided input is not escaped properly, allowing to inject a malicious script to the system page.
CPE | Name | Operator | Version |
---|---|---|---|
kentico.libraries | le | 11.0.2 | |
kentico.libraries | le | 10.0.49 | |
kentico.libraries.web.ui | le | 11.0.2 | |
kentico.libraries.web.ui | le | 10.0.49 |