Any tier · 12 specialized tests

Sitecore Security

Report.aspx RCE, ViewState, pre-auth file upload

€129 Add to Scan

What Gets Tested

Report.aspx pre-auth RCE (CVE-2021-42237)
ViewState deserialisation + MAC bypass
Pre-auth file upload surfaces
Sitecore admin /sitecore/ enum
Nuclei sitecore/ template pack

How It Works

1

Detection

Fingerprint via Sitecore cookies + SitecoreContextItem + /sitecore/.

2

Report.aspx

Probe CVE-2021-42237 injection surface.

3

Admin

Enumerate admin landing pages + ViewState MAC configuration.

Compliance Coverage

OWASP-A03 (Injection)

Sitecore Security

€129

Any tier · One-time per scan

12 specialized tests + AI-powered analysis

Start Your Scan

Select this addon when configuring your scan

Related Add-Ons

SharePoint Security (Enterprise)

€159

ViewState deserialisation, auth bypass, RCE chain

Adobe Experience Manager (AEM) Security

€159

Dispatcher selectors, servlet exposure, QueryBuilder RCE