Description
Kentico CMS is an ASP.NET web content management system.
The Kentico installation wizard is found in the web application. An attacker can install a new site and get Global Administrator access.
Remediation
Restrict access to the installation wizard
References
Related Vulnerabilities
WordPress Plugin WP Support Plus Responsive Ticket System Security Bypass (7.1.4)
Fortinet Authentication bypass on administrative interface
WordPress Plugin WP Limit Login Attempts Security Bypass (2.6.4)
WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass (2.6.84)