Kentico Xperience 13 is vulnerable to a stored cross-site scripting attack via a form component, allowing an attacker to hijack a victim user’s session and perform actions in their security context.CreditsMichael NervoReferenceshttps://www.themissinglink.com.au/security-advisories/cve-2025-5591
