CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-2794 – Kentico Xperience Staging Unsafe Reflection Kentico Xperience
https://notcve.org/view.php?id=CVE-2025-2794
31 Mar 2025 — An unsafe reflection vulnerability in Kentico Xperience allows an unauthenticated attacker to kill the current process, leading to a Denial-of-Service condition. This issue affects Xperience: through 13.0.180. • https://devnet.kentico.com/download/hotfixes • CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-2878 – Kentico CMS Additional Database Installation Wizard install.aspx cross site scripting
https://notcve.org/view.php?id=CVE-2025-2878
27 Mar 2025 — A vulnerability was found in Kentico CMS up to 13.0.178. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /CMSInstall/install.aspx of the component Additional Database Installation Wizard. The manipulation of the argument new database leads to cross site scripting. The attack can be launched remotely. • https://devnet.kentico.com/download/hotfixes • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-2748 – Kentico Xperience stored cross-site scripting in multiple-file upload functionality
https://notcve.org/view.php?id=CVE-2025-2748
24 Mar 2025 — The Kentico Xperience application does not fully validate or filter files uploaded via the multiple-file upload functionality, which allows for stored XSS.This issue affects Kentico Xperience through 13.0.178. The Kentico Xperience application does not fully validate or filter files uploaded via the multiple-file upload functionality, which allows for stored XSS.This issue affects Kentico Xperience through 13.0.178. • https://devnet.kentico.com/download/hotfixes • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 1CVE-2025-2749 – Kentico Xperience Staging media files upload authenticated remote code execution
https://notcve.org/view.php?id=CVE-2025-2749
24 Mar 2025 — An authenticated remote code execution in Kentico Xperience allows authenticated users Staging Sync Server to upload arbitrary data to path relative locations. This results in path traversal and arbitrary file upload, including content that can be executed server side leading to remote code execution.This issue affects Kentico Xperience through 13.0.178. • https://devnet.kentico.com/download/hotfixes • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 2CVE-2025-2747 – Kentico Xperience Staging Sync Server None password type authentication bypass
https://notcve.org/view.php?id=CVE-2025-2747
24 Mar 2025 — An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server component password handling for the server defined None type. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.178. • https://devnet.kentico.com/download/hotfixes • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 2CVE-2025-2746 – Kentico Xperience Staging Sync Server digest password authentication bypass
https://notcve.org/view.php?id=CVE-2025-2746
24 Mar 2025 — An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server password handling of empty SHA1 usernames in digest authentication. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.172. • https://devnet.kentico.com/download/hotfixes • CWE-287: Improper Authentication •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-12907 – XSS in Kentico 7
https://notcve.org/view.php?id=CVE-2024-12907
02 Jan 2025 — Kentico CMS in version 7 is vulnerable to a Reflected XSS attacks through manipulation of a specific GET request parameter sent to /CMSMessages/AccessDenied.aspx endpoint. Notably, support for this version of Kentico ended in 2016. Version 8 was tested as well and does not contain this vulnerability. Kentico CMS in version 7 is vulnerable to a Reflected XSS attacks through manipulation of a specific GET request parameter sent to /CMSMessages/AccessDenied.aspx endpoint. Notably, support for this version of K... • https://cert.pl/en/posts/2025/01/CVE-2024-12907 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-32387
https://notcve.org/view.php?id=CVE-2022-32387
18 Jul 2022 — In Kentico before 13.0.66, attackers can achieve Denial of Service via a crafted request to the GetResource handler. En Kentico versiones anteriores a 13.0.66, los atacantes pueden conseguir una denegación de servicio por medio de una petición diseñada al manejador GetResource • https://devnet.kentico.com/download/hotfixes •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29287
https://notcve.org/view.php?id=CVE-2022-29287
15 Apr 2022 — Kentico CMS before 13.0.66 has an Insecure Direct Object Reference vulnerability. It allows an attacker with user management rights (default is Administrator) to export the user options of any user, even ones with higher privileges (like Global Administrators) than the current user. The exported XML contains every option of the exported user (even the hashed password). Kentico CMS versiones anteriores a 13.0.66, presenta una vulnerabilidad de Referencia Directa a Objetos Insegura. Permite a un atacante con ... • https://devnet.kentico.com/download/hotfixes • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2021-46163
https://notcve.org/view.php?id=CVE-2021-46163
09 Jan 2022 — Kentico Xperience 13.0.44 allows XSS via an XML document to the Media Libraries subsystem. Kentico Xperience versión 13.0.44, permite un ataque de tipo XSS por medio de un documento XML al subsistema de Bibliotecas de Medios • https://gist.github.com/boatpavaris/649e731b2398597634fbe423dcfd8485 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •