CVE-2018-19453: Unrestricted Upload of File with Dangerous Type

April 10, 2019 (updated April 11, 2019)

Kentico CMS allows unrestricted upload of a file with a dangerous type.

References

blog.hivint.com/advisory-upload-malicious-file-in-kentico-cms-cve-2018-19453-36debbf85216
nvd.nist.gov/vuln/detail/CVE-2018-19453

Code Behaviors & Features

Detect and mitigate CVE-2018-19453 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →