PT-2023-20928 · Sitecore · Sitecore Experience Platform

Name of the Vulnerable Software and Affected Versions: Site Core Experience Platform versions 10.2 and earlier Description: The issue allows authenticated remote attackers to download arbitrary files via Urlhandle. This is a Directory Traversal vulnerability. Recommendations: For Site Core...