CVE-2022-50683

Name of the Vulnerable Software and Affected Versions Kentico Xperience (affected versions not specified)

Description A stored cross-site scripting issue exists in Kentico Xperience. This allows attackers to inject malicious scripts through the form redirect URL configuration. Successful exploitation results in the execution of malicious scripts in the context of a user's browser due to unvalidated form configuration settings.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.