mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.6 KiB
1.6 KiB
CVE-2021-42237
Description
Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attack where it is possible to achieve remote command execution on the machine. No authentication or special configuration is required to exploit this vulnerability.
POC
Reference
Github
- https://github.com/34zY/APT-Backpack
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/ItsIgnacioPortal/CVE-2021-42237
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/PinkDev1/CVE-2021-42237
- https://github.com/SYRTI/POC_to_review
- https://github.com/SohelParashar/.Net-Deserialization-Cheat-Sheet
- https://github.com/WhooAmii/POC_to_review
- https://github.com/aalexpereira/pipelines-tricks
- https://github.com/crankyyash/SiteCore-RCE-Detection
- https://github.com/f0ur0four/Insecure-Deserialization
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/soosmile/POC
- https://github.com/trhacknon/Pocingit
- https://github.com/vesperp/CVE-2021-42237-SiteCore-XP
- https://github.com/zecool/cve