CVE-2023-33653

Sitecore Experience Platform XP v9.3 was discovered to contain an authenticated remote code execution RCE vulnerability via the component /Applications/Content%20Manager/Execute.aspx?cmd=convert&mode=HTML...

CVE-2023-33653

Sitecore Experience Platform XP v9.3 was discovered to contain an authenticated remote code execution RCE vulnerability via the component /Applications/Content%20Manager/Execute.aspx?cmd=convert&mode=HTML...

Design/Logic Flaw

Sitecore Experience Platform XP v9.3 was discovered to contain an authenticated remote code execution RCE vulnerability via the component /Applications/Content%20Manager/Execute.aspx?cmd=convert&mode=HTML...

PT-2023-24434 · Sitecore · Sitecore Experience Platform

Name of the Vulnerable Software and Affected Versions: Sitecore Experience Platform XP version 9.3 Description: The issue is related to an authenticated remote code execution via the /Applications/Content Manager/Execute.aspx component, specifically when the cmd parameter is set to convert and th...

Sitecore Experience Platform 安全漏洞

Sitecore Experience Platform XP is a suite of customer digital experience platforms from Sitecore, Denmark. A security vulnerability exists in Sitecore Experience Platform XP version 9.3, which stems from a Remote Code Execution RCE vulnerability in authentication via the component...

CVE-2023-33653

Sitecore Experience Platform XP v9.3 was discovered to contain an authenticated remote code execution RCE vulnerability via the component /Applications/Content%20Manager/Execute.aspx?cmd=convert&mode=HTML...

CVE-2023-33653

CVE-2023-33653 affects Sitecore Experience Platform (XP) v9.3. The authenticated RCE exists in the content management component via /Applications/Content%20Manager/Execute.aspx?cmd=convert&mode=HTML. CVSS v3.1 base score 8.8 (HIGH) with network access, low privileges required, no user interaction...