logo

Database

Reflected cross-site scripting (XSS) In kentico.libraries

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2018-68422. NVD-2018-68423. OSV-2018-68424. GCVE-2018-6842

References

1. https://gist.github.com/zamous/c0afd7e21f3111de873c7bef6dcd9dd7

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.