CVE-2019-12440
The Sitecore Rocks plugin for Sitecore is affected (pre-2.1.149). An unauthenticated attacker can inject malicious commands and code via the Sitecore Rocks Hard Rocks Service, potentially compromising the host. References indicate the fix is in version 2.1.149 (release notes). No additional explo...