Vulnerabilities (CVE)

Filtered by vendor Sitecore Subscribe
Filtered by product Sitecore
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-38366 1 Sitecore 1 Sitecore 2024-11-21 6.8 MEDIUM 8.8 HIGH
Sitecore through 10.1, when Update Center is enabled, allows remote authenticated users to upload arbitrary files and achieve remote code execution by visiting an uploaded .aspx file at an admin/Packages URL.