CVE-2025-2748 Information

Mar 25, 2025 cve

Description

The Kentico Xperience application does not fully validate or filter files uploaded via the multiple-file upload functionality which allows for stored XSS.This issue affects Kentico Xperience through 13.0.178.

Reference

https://devnet.kentico.com/download/hotfixes

Share on: