Kentico - Kentico Cms CVE

Filtered by vendor Kentico Subscribe

Filtered by product Kentico Cms

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-27581	1 Kentico	1 Kentico Cms	2021-03-15	7.5 HIGH	9.8 CRITICAL
The Blog module in Kentico CMS 5.5 R2 build 5.5.3996 allows SQL injection via the tagname parameter.
CVE-2017-17736	1 Kentico	1 Kentico Cms	2019-10-03	7.5 HIGH	9.8 CRITICAL
Kentico 9.0 before 9.0.51 and 10.0 before 10.0.48 allows remote attackers to obtain Global Administrator access by visiting CMSInstall/install.aspx and then navigating to the CMS Administration Dashboard.

Vulnerabilities (CVE)