关联漏洞
描述
Information Disclosure in ItemService API with a restricted anonymous user, leading to exposure of cache keys using a brute-force approach
介绍
### CVE-2025-53694: Information Disclosure in ItemService API with a restricted anonymous user, leading to exposure of cache keys using a brute-force approach
The ItemService API, accessible at `/sitecore/shell/api/sitecore/ItemService/GetChildren`, allows unauthenticated users to query the Sitecore database. By providing a valid item GUID and database name, an attacker can enumerate the internal structure of the Sitecore instance, including sensitive information about items, templates, and system configuration.
**Information Disclosure:** The attacker uses CVE-2025-53694 to gather information about the target system.
## Mitigation
Sitecore has released patches for this vulnerabilitie. It is strongly recommended to upgrade to the latest version of Sitecore XP or apply the provided security patches.
## Reference
[1] Watchtowr Labs. (2025). [*Cache Me If You Can: Sitecore Experience Platform Cache Poisoning to RCE*.](https://labs.watchtowr.com/cache-me-if-you-can-sitecore-experience-platform-cache-poisoning-to-rce/)
文件快照
[4.0K] /data/pocs/f3bc9e2a7a4833ed8ca7dbb3295742bddb63a0a0
├── [9.1K] exploit.py
├── [1.0K] LICENSE
└── [1.0K] README.md
0 directories, 3 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。