Kenticocms
by Kentico
CVEs (17)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-10068 | Cri | 0.86 | 9.8 | 0.96 | KEV | Mar 26, 2019 | An issue was discovered in Kentico 12.0.x before 12.0.15, 11.0.x before 11.0.48, 10.0.x before 10.0.52, and 9.x versions. Due to a failure to validate security headers, it was possible for a specially crafted request to the staging service to bypass the initial authentication… | |
| CVE-2017-17736 | Cri | 0.69 | 9.8 | 0.69 | Mar 23, 2018 | Kentico 9.0 before 9.0.51 and 10.0 before 10.0.48 allows remote attackers to obtain Global Administrator access by visiting CMSInstall/install.aspx and then navigating to the CMS Administration Dashboard. | ||
| CVE-2021-27581 | Cri | 0.64 | 9.8 | 0.02 | Mar 5, 2021 | The Blog module in Kentico CMS 5.5 R2 build 5.5.3996 allows SQL injection via the tagname parameter. | ||
| CVE-2019-12102 | Cri | 0.59 | 9.1 | 0.02 | May 22, 2019 | Kentico 11 through 12 lets attackers upload and explore files without authentication via the cmsmodules/medialibrary/formcontrols/liveselectors/insertimageormedia/tabs_media.aspx URI. NOTE: The vendor disputes the report because the researcher did not configure the media library… | ||
| CVE-2018-19453 | Hig | 0.57 | 8.8 | 0.01 | Apr 10, 2019 | Kentico CMS before 11.0.45 allows unrestricted upload of a file with a dangerous type. | ||
| CVE-2018-5282 | Hig | 0.54 | 7.8 | 0.02 | Jan 8, 2018 | Kentico 9.0 through 11.0 has a stack-based buffer overflow via the SqlName, SqlPswd, Database, UserName, or Password field in a SilentInstall XML document. NOTE: the vendor disputes this issue because neither a buffer overflow nor a crash can be reproduced; also, reading XML… | ||
| CVE-2022-32387 | Hig | 0.49 | 7.5 | 0.01 | Jul 18, 2022 | In Kentico before 13.0.66, attackers can achieve Denial of Service via a crafted request to the GetResource handler. | ||
| CVE-2019-6242 | Hig | 0.47 | 7.2 | 0.01 | Feb 8, 2019 | Kentico v10.0.42 allows Global Administrators to read the cleartext SMTP Password by navigating to the SMTP configuration page. NOTE: the vendor considers this a best-practice violation but not a vulnerability. The vendor plans to fix it at a future time | ||
| CVE-2018-6843 | Hig | 0.47 | 7.2 | 0.01 | Mar 19, 2018 | Kentico 10 before 10.0.50 and 11 before 11.0.3 has SQL injection in the administration interface. | ||
| CVE-2018-7046 | Hig | 0.47 | 7.2 | 0.06 | Feb 20, 2018 | Arbitrary code execution vulnerability in Kentico 9 through 11 allows remote authenticated users to execute arbitrary operating system commands in a dynamic .NET code evaluation context via C# code in a "Pages -> Edit -> Template -> Edit template properties -> Layout" box. … | ||
| CVE-2020-24794 | Med | 0.40 | 6.1 | 0.01 | Sep 9, 2020 | Cross Site Scripting (XSS) vulnerability in Kentico before 12.0.75. | ||
| CVE-2019-19493 | Med | 0.38 | 5.4 | 0.02 | Dec 2, 2019 | Kentico before 12.0.50 allows file uploads in which the Content-Type header is inconsistent with the file extension, leading to XSS. | ||
| CVE-2018-6842 | Med | 0.35 | 5.4 | 0.01 | Mar 19, 2018 | Kentico 10 before 10.0.50 and 11 before 11.0.3 has XSS in which a crafted URL results in improper construction of a system page. | ||
| CVE-2024-12907 | Med | 0.34 | — | 0.00 | Jan 2, 2025 | Kentico CMS in version 7 is vulnerable to a Reflected XSS attacks through manipulation of a specific GET request parameter sent to /CMSMessages/AccessDenied.aspx endpoint. Notably, support for this version of Kentico ended in 2016. Version 8 was tested as well and does not… | ||
| CVE-2018-7205 | Med | 0.31 | 4.8 | 0.01 | Feb 20, 2018 | Reflected Cross-Site Scripting vulnerability in "Design" on "Edit device layout" in Kentico 9 through 11 allows remote attackers to execute malicious JavaScript via a malicious devicename parameter in a link that is entered via the "Pages -> Edit template properties -> Device… | ||
| CVE-2015-7823 | 0.00 | — | 0.05 | Oct 21, 2015 | Open redirect vulnerability in CMSPages/GetDocLink.ashx in Kentico CMS 8.2 through 8.2.41 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the link parameter. | |||
| CVE-2015-7822 | 0.00 | — | 0.01 | Oct 21, 2015 | Multiple cross-site scripting (XSS) vulnerabilities in Kentico CMS 8.2 allow remote attackers to inject arbitrary web script or HTML via a (1) parameter name to CMSModules/AdminControls/Pages/UIPage.aspx or the (2) CMSBodyClass cookie variable to the default URI. |
- risk 0.86cvss 9.8epss 0.96
An issue was discovered in Kentico 12.0.x before 12.0.15, 11.0.x before 11.0.48, 10.0.x before 10.0.52, and 9.x versions. Due to a failure to validate security headers, it was possible for a specially crafted request to the staging service to bypass the initial authentication…
- risk 0.69cvss 9.8epss 0.69
Kentico 9.0 before 9.0.51 and 10.0 before 10.0.48 allows remote attackers to obtain Global Administrator access by visiting CMSInstall/install.aspx and then navigating to the CMS Administration Dashboard.
- risk 0.64cvss 9.8epss 0.02
The Blog module in Kentico CMS 5.5 R2 build 5.5.3996 allows SQL injection via the tagname parameter.
- risk 0.59cvss 9.1epss 0.02
Kentico 11 through 12 lets attackers upload and explore files without authentication via the cmsmodules/medialibrary/formcontrols/liveselectors/insertimageormedia/tabs_media.aspx URI. NOTE: The vendor disputes the report because the researcher did not configure the media library…
- risk 0.57cvss 8.8epss 0.01
Kentico CMS before 11.0.45 allows unrestricted upload of a file with a dangerous type.
- risk 0.54cvss 7.8epss 0.02
Kentico 9.0 through 11.0 has a stack-based buffer overflow via the SqlName, SqlPswd, Database, UserName, or Password field in a SilentInstall XML document. NOTE: the vendor disputes this issue because neither a buffer overflow nor a crash can be reproduced; also, reading XML…
- risk 0.49cvss 7.5epss 0.01
In Kentico before 13.0.66, attackers can achieve Denial of Service via a crafted request to the GetResource handler.
- risk 0.47cvss 7.2epss 0.01
Kentico v10.0.42 allows Global Administrators to read the cleartext SMTP Password by navigating to the SMTP configuration page. NOTE: the vendor considers this a best-practice violation but not a vulnerability. The vendor plans to fix it at a future time
- risk 0.47cvss 7.2epss 0.01
Kentico 10 before 10.0.50 and 11 before 11.0.3 has SQL injection in the administration interface.
- risk 0.47cvss 7.2epss 0.06
Arbitrary code execution vulnerability in Kentico 9 through 11 allows remote authenticated users to execute arbitrary operating system commands in a dynamic .NET code evaluation context via C# code in a "Pages -> Edit -> Template -> Edit template properties -> Layout" box. …
- risk 0.40cvss 6.1epss 0.01
Cross Site Scripting (XSS) vulnerability in Kentico before 12.0.75.
- risk 0.38cvss 5.4epss 0.02
Kentico before 12.0.50 allows file uploads in which the Content-Type header is inconsistent with the file extension, leading to XSS.
- risk 0.35cvss 5.4epss 0.01
Kentico 10 before 10.0.50 and 11 before 11.0.3 has XSS in which a crafted URL results in improper construction of a system page.
- risk 0.34cvss —epss 0.00
Kentico CMS in version 7 is vulnerable to a Reflected XSS attacks through manipulation of a specific GET request parameter sent to /CMSMessages/AccessDenied.aspx endpoint. Notably, support for this version of Kentico ended in 2016. Version 8 was tested as well and does not…
- risk 0.31cvss 4.8epss 0.01
Reflected Cross-Site Scripting vulnerability in "Design" on "Edit device layout" in Kentico 9 through 11 allows remote attackers to execute malicious JavaScript via a malicious devicename parameter in a link that is entered via the "Pages -> Edit template properties -> Device…
- CVE-2015-7823Oct 21, 2015risk 0.00cvss —epss 0.05
Open redirect vulnerability in CMSPages/GetDocLink.ashx in Kentico CMS 8.2 through 8.2.41 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the link parameter.
- CVE-2015-7822Oct 21, 2015risk 0.00cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in Kentico CMS 8.2 allow remote attackers to inject arbitrary web script or HTML via a (1) parameter name to CMSModules/AdminControls/Pages/UIPage.aspx or the (2) CMSBodyClass cookie variable to the default URI.