Nieuws

Ars Technica17 j

Configuring IIS 6 on intranet and deploying ASP.NET 3.5 web app... help :)

Configuring IIS 6 on intranet and deploying ASP.NET 3.5 web app... help :) Maxer May 7, 2008 Jump to latest Follow Reply ...

Top CMS Sitecore patches critical zero-day flaw being hit by hackers

The zero-day is described as a critical deserialization vulnerability affecting Sitecore Experience Manager (XM), Sitecore ...

Hackers exploited Sitecore zero-day flaw to deploy backdoors

Threat actors have been exploiting a zero-day vulnerability in legacy Sitecore deployments to deploy WeepSteel reconnaissance ...
CSO Online8d

Sitecore zero-day configuration flaw under active exploitation

Attackers are leveraging a sample machine key in Sitecore products for initial access before ViewState code injections lead ...
SecurityWeek9d

Hackers Exploit Sitecore Zero-Day for Malware Delivery

An ASP.NET feature, ViewState stores the state of a webpage in a hidden HTML field, for persistence. Attackers can target the ...
The Hacker News7d

CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under Active Exploitation

"The upshot of CVE-2025-53690 is that an enterprising threat actor somewhere has apparently been using a static ASP.NET ...
Infosecurity Magazine9d

CMS Provider Sitecore Patches Exploited Critical Zero Day

Google Cloud’s Mandiant successfully disrupted an active ViewState deserialization attack affecting Sitecore deployments ...