Skip to main content

Sitecore Net

2 CVEs product

Monthly

CVE-2018-7669 HIGH POC THREAT This Week

An issue was discovered in Sitecore Sitecore.NET 8.1 rev. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sitecore Net
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
17.5%
CVE-2017-9356 MEDIUM POC This Month

Sitecore.NET 7.1 through 7.2 has a Cross Site Scripting Vulnerability via the searchStr parameter to the /Search-Results URI. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Sitecore Net
NVD
CVSS 3.0
6.1
EPSS
0.2%
EPSS 17% CVSS 7.5
HIGH POC THREAT This Week

An issue was discovered in Sitecore Sitecore.NET 8.1 rev. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sitecore Net
NVD Exploit-DB
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Sitecore.NET 7.1 through 7.2 has a Cross Site Scripting Vulnerability via the searchStr parameter to the /Search-Results URI. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Sitecore Net
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy