Unrated severityNVD Advisory· Published Dec 18, 2025· Updated Dec 30, 2025
Kentico Xperience <= 13.0.92 Email Marketing Stored XSS
CVE-2022-50680
Description
A stored cross-site scripting vulnerability in Kentico Xperience allows administration users to inject malicious scripts via email marketing templates. Attackers can exploit this vulnerability to execute malicious scripts that could compromise user browsers and steal sensitive information.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- devnet.kentico.com/download/hotfixesmitrevendor-advisorypatch
- www.vulncheck.com/advisories/kentico-xperience-email-marketing-stored-xssmitrethird-party-advisory
News mentions
0No linked articles in our index yet.