CVE-2020-36889 | Kentico Xperience up to 12.0.90 Administration Interface cross site scripting

December 18, 2025 Yanac

A vulnerability was found in Kentico Xperience up to 12.0.90 and classified as problematic. This affects an unknown part of the component Administration Interface. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2020-36889. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2020-36891 | Kentico Xperience up to 12.0.49 Content-Type cross site scripting
CVE-2025-59949 | FreshRSS up to 1.27.0 cross-site request forgery (GHSA-w7f5-8vf9-f966)