CVE-2024-58322
Kentico Xperience <= 13.0.158 Shipping Options Stored XSS
A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicious code into shipping options configuration. This could lead to potential theft of sensitive data by executing malicious scripts in users' browsers.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N
Affected products
Kentico · XperienceWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →