CVE-2025-2749

⚠ KEVEPSS 4.9%

Kentico Xperience Path Traversal Vulnerability

Added to CISA KEV: 4/20/2026

Description

Kentico Xperience contains a path traversal vulnerability that could allow an authenticated user's Staging Sync Server to upload arbitrary data to path relative locations.

Affected packages (0)

No package mapping in OSV.