When you navigate to the K2 site login page, a vulnerability occurs via the ‘_debug’ parameter.
The fix is available in:
- K2 Five (5.6) Fix Pack 27.
- Ensure you have the correct K2 version and/or Cumulative update installed. See KB001893 to see what Fix Pack level you have installed.
- Download the latest Fix Pack using the links in the table above for the version you require.
- Install the Fix Pack to apply the fix.
- It is recommended to clear browser cache and refresh the page.