CVE-2023-53738

Name of the Vulnerable Software and Affected Versions Kentico Xperience (affected versions not specified)

Description A reflected cross-site scripting issue exists in Kentico Xperience that permits authenticated users to inject malicious scripts through page preview URLs. Exploitation of this issue allows attackers to execute arbitrary scripts within the browsers of users during page preview operations. The vulnerability involves the injection of scripts via page preview URLs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.