VYPR
Unrated severityNVD Advisory· Published Sep 3, 2025· Updated Sep 3, 2025

HTML Cache Poisoning through Unsafe Reflections

CVE-2025-53693

Description

Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Sitecore Sitecore Experience Manager (XM), Sitecore Experience Platform (XP) allows Cache Poisoning.This issue affects Sitecore Experience Manager (XM): from 9.0 through 9.3, from 10.0 through 10.4; Experience Platform (XP): from 9.0 through 9.3, from 10.0 through 10.4.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • >= 9.0.0, <= 9.3.0 || >= 10.0.0, <= 10.4.0+ 1 more
    • (no CPE)range: >= 9.0.0, <= 9.3.0 || >= 10.0.0, <= 10.4.0
    • (no CPE)range: 9.0
  • >= 9.0.0, <= 9.3.0 || >= 10.0.0, <= 10.4.0+ 1 more
    • (no CPE)range: >= 9.0.0, <= 9.3.0 || >= 10.0.0, <= 10.4.0
    • (no CPE)range: 9.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.