CVE-2022-50683
Kentico Xperience <= 13.0.74 Form Configuration Stored XSS
A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicious scripts via form redirect URL configuration. This allows malicious scripts to execute in users' browsers through unvalidated form configuration settings.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N
Produtos afetados
Kentico · XperienceQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →