Security Advisory

CVE-2019-25229

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-18 19:53:24

Last updated 2025-12-18 21:48:34

Assigner VulnCheck

State PUBLISHED

Description

An unrestricted file upload vulnerability in Kentico Xperience allows authenticated users with Read data permissions to upload arbitrary file types via MVC form file uploader components. Attackers can manipulate file names and upload potentially malicious files to the system, enabling unauthorized file uploads.

← Browse all CVEs View on cve.org ↗