Pornpwit Sookphoekee

**Name of the Vulnerable Software and Affected Versions** Kentico Xperience version 13.0.44 **Description** The issue allows for cross-site scripting (XSS) via an XML document to the Media Libraries subsystem. **Recommendations** For Kentico Xperience version 13.0.44, consider restricting access to the Media Libraries subsystem until a patch is available. As a temporary workaround, avoid using XML documents in this subsystem to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.