Stored XSS Vulnerability in Kentico Xperience Application
CVE-2025-2748

Currently unrated

Key Information:

Vendor

Kentico

Status
Kentico Xperience
Vendor
CVE Published:
24 March 2025

Badges

šŸ“ˆ Score: 130šŸ‘¾ Exploit ExistsšŸ“° News Worthy

What is CVE-2025-2748?

CVE-2025-2748 is a stored cross-site scripting (XSS) vulnerability found in the Kentico Xperience application, a content management system (CMS) designed for building and managing websites and online experiences. This vulnerability arises from the applicationā€™s failure to adequately validate and filter files uploaded through its multiple-file upload feature. The implications for organizations are significant, as this weakness can allow attackers to inject malicious scripts that may execute in the context of other usersā€™ browsers, leading to unauthorized actions and data exposure.

Technical Details

The vulnerability resides in the Kentico Xperience application version 13.0.178 and earlier, affecting its file handling mechanisms. Specifically, the lack of proper validation for uploaded files means that malicious scripts can be stored and subsequently executed when other users access affected content. This kind of flaw is particularly dangerous as it does not require an attacker to directly interact with a victim's system; rather, the script runs automatically when a user views the compromised content.

Potential impact of CVE-2025-2748

  1. Data Exposure: Exploiting this vulnerability could lead to unauthorized access to sensitive information, including user data, by executing scripts that can steal session cookies or manipulate user accounts.

  2. Reputation Damage: Organizations affected by this vulnerability may suffer significant reputational harm as user trust declines due to security breaches and potential data loss.

  3. Increased Attack Surface: The presence of stored XSS vulnerabilities could enable further exploits, such as distributing malware or facilitating phishing attacks, thereby broadening an organization's attack surface.

News Articles

favicon imagewatchTowr Labs

XSS To RCE By Abusing Custom File Handlers - Kentico Xperience CMS (CVE-2025-2748)

We know what youā€™re waiting for - this isnā€™t it. Today, weā€™re back with more tales of our adventures in Kenticoā€™s Xperience CMS. Due to itā€™s wide usage, the type of solution, and the types of enterprises using this solution - any serious vulnerability, or

References

https://devnet.kentico.com/download/hotfixes

Timeline

  • šŸ‘¾

    Exploit known to exist

  • šŸ“°

    First article discovered by watchTowr Labs

  • Vulnerability published

.