CVE-2023-26262
CVE-2023-26262 affects Sitecore XP/XM 10.3. An authenticated Sitecore user can upload language files without restrictions, enabling direct code execution on the content management (CM) server. The vulnerability stems from an unrestricted language file upload mechanism in the CMS. Impact is descri...