Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Sitecore Subscribe
Filtered by product Sitecore
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-38366 1 Sitecore 1 Sitecore 2021-08-25 6.8 MEDIUM 8.8 HIGH
Sitecore through 10.1, when Update Center is enabled, allows remote authenticated users to upload arbitrary files and achieve remote code execution by visiting an uploaded .aspx file at an admin/Packages URL.