Description
Kentico CMS is an ASP.NET web content management system.
The Kentico installation wizard is found in the web application. An attacker can install a new site and get Global Administrator access.
Remediation
Restrict access to the installation wizard
References
Related Vulnerabilities
WordPress Plugin Restricted Site Access Security Bypass (7.3.1)
WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Security Bypass (3.0.7)
WordPress Plugin Easy Social Feed-Social Photos Gallery-Post Feed-Like Box Security Bypass (6.3.3)
WordPress Plugin Currency Switcher for WooCommerce Security Bypass (2.11.1)
WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Security Bypass (3.0.1)