https://docs.kentico.com Custom generator Fri, 10 Apr 2026 09:05:34 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Medium - CAPTCHA bypass vulnerability in reCAPTCHA v2 validation

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2026-04-09 https://docs.kentico.com/x/security_advisory_2026-04-09_xp Thu, 09 Apr 2026 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• None - Third‑party dependency update – Microsoft.SemanticKernel.Core

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2026-02-23 https://docs.kentico.com/x/security_advisory_2026-02-23_xp Mon, 23 Feb 2026 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• High - Timing attack vulnerability in content sync authentication

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2025-11-13 https://docs.kentico.com/x/security_advisory_2025-11-13_xp Thu, 13 Nov 2025 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Critical - Recommendation on .NET Framework Update – CVE-2025-55315

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2025-10-16 https://docs.kentico.com/x/security_advisory_2025-10-16_xp Thu, 16 Oct 2025 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• High - Magick.NET dependency update to 14.8.1

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2025-08-28 https://docs.kentico.com/x/security_advisory_2025-08-28_xp Thu, 28 Aug 2025 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Medium - SQL Injection in kentico-xperience-dbmanager tool

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2025-03-27 https://docs.kentico.com/x/security_advisory_2025-03-27_xp Thu, 27 Mar 2025 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Medium - Account lockout causes temporary lockout of valid users

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2025-03-24 https://docs.kentico.com/x/security_advisory_2025-03-24_xp Mon, 24 Mar 2025 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Medium - Broken access control between contact groups and recipient lists

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2025-01-09 https://docs.kentico.com/x/security_advisory_2025-01-09_xp Thu, 09 Jan 2025 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Medium - Reflected cross-site scripting (XSS) attack via logger endpoint

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2024-12-05 https://docs.kentico.com/x/security_advisory_2024-12-05_xp Thu, 05 Dec 2024 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Medium - Insecure direct object reference (IDOR) in Form Builder

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2024-11-21 https://docs.kentico.com/x/security_advisory_2024-11-21_xp Thu, 21 Nov 2024 14:00:00 GMT A new Security Advisory was issued for Xperience by Kentico. The advisory addresses the following issues:

• Medium - Self-cross-site scripting (XSS) attack via Rich text editor

]]> https://docs.kentico.com/documentation/security-advisories/security-advisory-2024-11-14 https://docs.kentico.com/x/security_advisory_2024-11-14_xp Thu, 14 Nov 2024 14:00:00 GMT