News

Bleeping Computer

Sitecore CMS exploit chain starts with hardcoded 'b' password

A chain of Sitecore Experience Platform (XP) vulnerabilities allows attackers to perform remote code execution (RCE) without authentication to breach and hijack servers. Sitecore is a popular ...

Hackers exploited Sitecore zero-day flaw to deploy backdoors

Threat actors have been exploiting a zero-day vulnerability in legacy Sitecore deployments to deploy WeepSteel reconnaissance ...
HealthcareInfoSecurity

Attackers Exploit Sitecore Zero-Day

Attackers exploited a now-patched zero-day vulnerability in a popular content management system that powers websites for ...