CVE-2025-5591

Publication date

2026-01-05 00:02:51

Family

TML

State

PUBLISHED

Description

Kentico Xperience 13 is vulnerable to a stored cross-site scripting attack via a form component, allowing an attacker to hijack a victim user’s session and perform actions in their security context.