CVE-2025-5591 – Stored Cross-site Scripting (XSS) in Kentico Xperience 13

CVE ID : CVE-2025-5591

Published : Jan. 5, 2026, 1:15 a.m. | 1 hour, 10 minutes ago

Description : Kentico Xperience 13 is vulnerable to a stored cross-site scripting attack via a form component, allowing an attacker to hijack a victim user’s session and perform actions in their security context.

Severity: 7.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…