Known Vulnerabilities
CVE-2024-11627
: Insufficient Session Expiration vulnerability in Progress Sitefinity allows : Session Fixation.This issue affects Sitefinity: from 4.0 through 14.4.8142, from 15.0.8200 through 15.0.8229, from 15.1.8300 through 15.1.8327, from 15.2.8400 through 15.2.8421.
MEDIUM
CVSS 6.8
Published Jan 07, 2025
CVE-2024-1636
Potential Cross-Site Scripting (XSS) in the page editing area.
HIGH
CVSS 8.0
Published Feb 28, 2024