Unrestricted Language File Upload Vulnerability in Sitecore XP/XM 10.3

CVE-2023-26262 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in Sitecore XP/XM 10.3. As an authenticated Sitecore user, a unrestricted language file upload vulnerability exists the can lead to direct code execution on the content management (CM) server.

Learn more about our Cis Benchmark Audit For Server Software.