Vulnerabilities > Kentico > Kentico > 7.0.27
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-04-16 | CVE-2022-29287 | Authorization Bypass Through User-Controlled Key vulnerability in Kentico Kentico CMS before 13.0.66 has an Insecure Direct Object Reference vulnerability. | 4.0 |
2020-09-09 | CVE-2020-24794 | Cross-site Scripting vulnerability in Kentico Cross Site Scripting (XSS) vulnerability in Kentico before 12.0.75. | 4.3 |
2019-03-26 | CVE-2019-10068 | Deserialization of Untrusted Data vulnerability in Kentico An issue was discovered in Kentico 12.0.x before 12.0.15, 11.0.x before 11.0.48, 10.0.x before 10.0.52, and 9.x versions. | 7.5 |