Kentico · Kentico Xperience · CVE-2022-50682
**Name of the Vulnerable Software and Affected Versions**
Kentico Xperience (affected versions not specified)
**Description**
A CRLF injection flaw exists in Kentico Xperience due to improper encoding within the routing engine. This allows attackers to manipulate URL query string redirects. Successful exploitation could lead to header injection and potentially enable further web application attacks.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.