CVE-2021-27581

CVE-2021-27581

EPSS 1.6%

The Blog module in Kentico CMS 5.5 R2 build 5.5.3996 allows SQL injection via the tagname parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gist.github.com/stasinopoulos/673ae3c31d703b4d67449f4d8888c686 https://kontent.ai https://www.obrela.com/kentico-cms-critical-vulnerability/