CVE-2019-25228 | Kentico Xperience up to 12.0.47 HTTP Header Referer exposure of sensitive system information to an unauthorized control sphere

A vulnerability classified as problematic has been found in Kentico Xperience up to 12.0.47. Impacted is an unknown function of the component HTTP Header Handler. This manipulation of the argument Referer causes exposure of sensitive system information to an unauthorized control sphere.

This vulnerability is handled as CVE-2019-25228. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More