An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release through 10.4 Initial Release. An unauthenticated attacker can read arbitrary files.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Experience_commerce | Sitecore | 8.0 (including) | 10.4 (including) |
| Experience_manager | Sitecore | 8.0 (including) | 10.4 (including) |
| Experience_platform | Sitecore | 8.0 (including) | 10.4 (including) |