Search for packages
| purl | pkg:nuget/Kentico.Libraries@10.0.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-4ek4-g4m1-dya6
Aliases: CVE-2018-6842 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Kentico has XSS in which a crafted URL results in improper construction of a system page. |
Affected by 0 other vulnerabilities. |
|
VCID-d2gk-j16z-v3dn
Aliases: CVE-2017-17736 |
Direct Request ('Forced Browsing') Kentico allows remote attackers to obtain Global Administrator access by visiting CMSInstall/install.aspx and then navigating to the CMS Administration Dashboard. |
Affected by 0 other vulnerabilities. |
|
VCID-k1pf-7arq-wudg
Aliases: CVE-2018-6843 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Kentico has SQL injection in the administration interface. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-02T04:37:36.962194+00:00 | GitLab Importer | Affected by | VCID-d2gk-j16z-v3dn | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Kentico.Libraries/CVE-2017-17736.yml | 38.6.0 |
| 2026-06-02T04:37:36.211541+00:00 | GitLab Importer | Affected by | VCID-4ek4-g4m1-dya6 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Kentico.Libraries/CVE-2018-6842.yml | 38.6.0 |
| 2026-06-02T04:37:36.113609+00:00 | GitLab Importer | Affected by | VCID-k1pf-7arq-wudg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Kentico.Libraries/CVE-2018-6843.yml | 38.6.0 |