Cloud Vulnerability DB
A community-led vulnerabilities database
Vulnerability DatabaseCVE-2025-53693
CVE-2025-53693:
Sitecore Experience Platform (XP) vulnerability analysis and mitigation
Overview
CVE-2025-53693 is a pre-authentication HTML cache poisoning vulnerability discovered in Sitecore Experience Manager (XM) and Sitecore Experience Platform (XP). The vulnerability was discovered by watchTowr Labs and disclosed on June 16, 2025. It affects Sitecore Experience Manager (XM) versions 9.0 through 9.3 and 10.0 through 10.4, as well as Experience Platform (XP) versions 9.0 through 9.3 and 10.0 through 10.4. The vulnerability has received a CVSS v3.1 base score of 9.8 (Critical) (Wiz NVD).
Technical details
The vulnerability stems from unsafe reflection in the XamlPageHandlerFactory component, specifically in how it handles the AjaxScriptManager control. The issue allows an attacker to abuse a restricted reflection path to call methods that can poison any HTML cache key through the Sitecore.Web.UI.WebControl.AddToCache method. The vulnerability can be triggered by sending specially crafted HTTP requests to the /-/xaml/Sitecore.Shell.Xaml.WebControl endpoint, allowing attackers to manipulate cached content (Watchtowr Labs).
Impact
The vulnerability allows unauthenticated attackers to perform HTML cache poisoning attacks against Sitecore instances. This can lead to the modification of cached content served to users, potentially enabling further attacks through malicious JavaScript injection. When chained with other vulnerabilities, it could lead to complete system compromise through remote code execution (Hacker News).
Mitigation and workarounds
Patches for this vulnerability were released by Sitecore in June 2025. Organizations are strongly advised to update to the latest patched versions of Sitecore Experience Manager and Experience Platform. The vulnerability has been fixed in subsequent releases after the affected versions (Hacker News).
Community reactions
The security community has expressed significant concern about this vulnerability, particularly due to its critical severity rating and the widespread use of Sitecore in enterprise environments. Research indicates that at least 22,000 Sitecore instances could be potentially affected (Watchtowr Labs).
Additional resources
Source: This report was generated using AI
Related Sitecore Experience Platform (XP) vulnerabilities:
Free Vulnerability Assessment
Benchmark your Cloud Security Posture
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Additional Wiz resources
Get a personalized demo
Ready to see Wiz in action?
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management