The Australian Cyber Security Center (ACSC) is alerting web admins of the active exploitation of a remote code execution flaw in the Sitecore Experience Platform (Sitecore XP) Sitecore XP is an enterprise-level content management system with data analytics (CMS) used by well-known companies, including American Express, IKEA, Carnival Cruise Lines, L’Oral, and Volvo. The vulnerability does not require authentication and it allows any remote attacker to exploit a vulnerable server and gain complete control over it.”]

