CVE-2018-6842

Kentico 10 before 10.0.50 and 11 before 11.0.3 has XSS in which a crafted URL results in improper construction of a system page.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:kentico:kentico_cms:*:*:*:*:*:*:*:*
cpe:2.3:a:kentico:kentico_cms:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-03-19 14:29

Updated : 2024-02-04 19:46


NVD link : CVE-2018-6842

Mitre link : CVE-2018-6842

CVE.ORG link : CVE-2018-6842


JSON object : View

Products Affected

kentico

  • kentico_cms
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')