AI Score
Confidence
High
EPSS
Percentile
72.8%
The Sitecore Rocks plugin before 2.1.149 for Sitecore allows an unauthenticated threat actor to inject malicious commands and code via the Sitecore Rocks Hard Rocks Service.
github.com/Sitecore/Sitecore.Rocks/compare/be79dcc...bd9ba6a
github.com/Sitecore/Sitecore.Rocks/releases/tag/2.1.149
kb.sitecore.net/articles/842902