.. / CVE-2021-42237

Exploit for Sitecore Experience Platform Pre-Auth RCE (CVE-2021-42237)

Description:

Sitecore XP 7.5 to Sitecore XP 8.2 Update 7 is vulnerable to an insecure deserialization attack where remote commands can be executed by an attacker with no authentication or special configuration required.

Nuclei Template

View the template here CVE-2021-42237.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-42237.yaml

References:

http://packetstormsecurity.com/files/164988/Sitecore-Experience-Platform-XP-Remote-Code-Execution.html
https://blog.assetnote.io/2021/11/02/sitecore-rce/
https://nvd.nist.gov/vuln/detail/CVE-2021-42237
http://sitecore.com
https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1000776

.. / CVE-2021-42237 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Sitecore Experience Platform Pre-Auth RCE (CVE-2021-42237)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-42237