Lucene search
China National Vulnerability DatabaseCNVD-2022-06913HistoryDec 07, 2021 - 12:00 a.m.
Kentico Cross-Site Scripting Vulnerability (CNVD-2022-06913)
2021-12-0700:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
kentico
xperience cms
cross-site scripting
asp.net
content management system
persistent
xss
vulnerability
client-side code
security
EPSS
0.001
Percentile
24.8%
Kentico is an ASP.NET-based content management system (CMS) from Kentico, Inc. A security vulnerability exists in Kentico Xperience CMS, which stems from the fact that Kentico Xperience CMS version 13.0 13.0.43 is prone to a persistent cross-site scripting (XSS) vulnerability (also known as stored or second-order XSS). An attacker could exploit this vulnerability to execute client-side code.
Related
prion
prion
Cross site scripting
2021-12-03 15:15:00
cve
cve
CVE-2021-43991
2021-12-03 15:15:08
cvelist
cvelist
CVE-2021-43991 Persistent XSS via Avatar Upload in Kentico Xperience CMS
2021-12-03 14:42:31
nvd
nvd
CVE-2021-43991
2021-12-03 15:15:08