PT-2025-30883 · Sitecore · Sitecore Jss React Sample Application
Sitecore
·
Published
2025-07-25
·
Updated
2025-07-25
·
CVE-2020-36850
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Sitecore JSS React Sample Application versions 11.0.0 through 14.0.1
Description
An information disclosure issue exists that may allow page content intended for one user to be displayed to another user.
Recommendations
Sitecore JSS React Sample Application versions prior to 14.0.2
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sitecore Jss React Sample Application