An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release through 10.4 Initial Release. An unauthenticated attacker can read arbitrary files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Experience_commerce | Sitecore | 8.0 (including) | 10.4 (including) |
Experience_manager | Sitecore | 8.0 (including) | 10.4 (including) |
Experience_platform | Sitecore | 8.0 (including) | 10.4 (including) |