CVE-2022-50680

Name of the Vulnerable Software and Affected Versions Kentico Xperience (affected versions not specified)

Description A stored cross-site scripting issue exists in Kentico Xperience. Administration users can inject malicious scripts through email marketing templates. Exploitation allows attackers to execute malicious scripts, potentially compromising user browsers and leading to the theft of sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.