Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Kentico Xperience <= 12.0 Portal Engine Form Control Information Disclosure
Vulnerability Description
An information disclosure vulnerability in Kentico Xperience allows attackers to view sensitive stack trace details via Portal Engine form control error messages. Detailed error messages can expose internal system information and potentially reveal implementation details to unauthorized users.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
通过错误消息导致的信息暴露
Vulnerability Title
Kentico Xperience 安全漏洞
Vulnerability Description
Kentico Xperience是Kentico公司的一个数字体验平台。 Kentico Xperience存在安全漏洞,该漏洞源于Portal Engine表单控件错误消息可能泄露敏感堆栈跟踪详情,导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A