POC详情: 11f1d5473630311eee4660b8ec8fe2361cf84784

来源
https://github.com/rxerium/CVE-2025-53690
关联漏洞
标题: Sitecore Experience Manager 安全漏洞 (CVE-2025-53690)
描述:Sitecore Experience Manager(XM)是丹麦Sitecore公司的一个管理软件。 Sitecore Experience Manager 9.0及之前版本和Sitecore Experience Platform 9.0及之前版本存在安全漏洞,该漏洞源于反序列化不受信任数据,可能导致代码注入。
描述
Detection for CVE-2025-53690
介绍
# CVE-2025-53690

Deserialization of Untrusted Data vulnerability in Sitecore Experience Manager (XM), Sitecore Experience Platform (XP) allows Code Injection.This issue affects Experience Manager (XM): through 9.0; Experience Platform (XP): through 9.0.

## How does this detection method work?

This Nuclei template fetches sitecore.version.xml, extracts the first two digits of the version number from the body, builds a major.minor string, and matches if the page returns 200, contains “Sitecore Corporation,” and the version is 9.0 or lower.

## How do I run this script?

1. Download Nuclei from [here](https://github.com/projectdiscovery/nuclei)
2. Copy the template to your local system
3. Run the following command: `nuclei -u https://yourHost.com -t template.yaml` 

### Example Output

<img width="807" height="252" alt="Screenshot 2025-09-04 at 20 55 48" src="https://github.com/user-attachments/assets/dd897b25-b757-488a-a7e3-13670c692a91" />


## References

- https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003865
- https://cloud.google.com/blog/topics/threat-intelligence/viewstate-deserialization-zero-day-vulnerability


## Disclaimer

Use at your own risk, I will not be responsible for illegal activities you conduct on infrastructure you do not own or have permission to scan.

## Share This Project

<div align="center">
  <a href="https://twitter.com/intent/tweet?text=Check%20out%20this%20CVE%20detection%20template%20by%20@rxerium!&url=https://github.com/rxerium/poc-template" target="_blank">
    <img src="https://img.shields.io/badge/🐦%20Share%20on-Twitter-lightgrey?style=flat&logo=twitter&logoColor=1DA1F2" alt="Share on Twitter"/>
  </a>
  <a href="https://www.linkedin.com/sharing/share-offsite/?url=https://github.com/rxerium/poc-template" target="_blank">
    <img src="https://img.shields.io/badge/💼%20Share%20on-LinkedIn-lightgrey?style=flat&logo=linkedin&logoColor=0077B5" alt="Share on LinkedIn"/>
  </a>
  <a href="mailto:?subject=CVE%20Detection%20Template&body=Check%20out%20this%20interesting%20CVE%20detection%20template%20by%20rxerium:%20https://github.com/rxerium/poc-template" target="_blank">
    <img src="https://img.shields.io/badge/%20Share%20via-Email-lightgrey?style=flat&logo=gmail&logoColor=D14836" alt="Share via Email"/>
  </a>
</div>

---

## Contact

Feel free to reach out via [Signal](https://signal.me/#eu/0Qd68U1ivXNdWCF4hf70UYFo7tB0w-GQqFpYcyV6-yr4exn2SclB6bFeP7wTAxQw) if you have any questions.
文件快照

 [4.0K]  /data/pocs/11f1d5473630311eee4660b8ec8fe2361cf84784
├── [1.1K]  CVE-2025-53690.yaml
└── [2.4K]  README.md

0 directories, 2 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。