Lucene search
+L

CVE-2013-3484

🗓️ 02 Apr 2014 15:00:00Reported by flexeraType 
cve
 cve
🔗 web.nvd.nist.gov👁 38 Views🌐 WEB

Multiple XSS vulnerabilities in dotCMS before 2.3.2 allow remote attackers to inject arbitrary web script or HTML

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Cvelist
CVE-2013-3484
2 Apr 201415:00
cvelist
EUVD
EUVD-2013-3419
7 Oct 202500:30
euvd
NVD
CVE-2013-3484
2 Apr 201416:17
nvd
OpenVAS
dotCMS Multiple Login Page XSS Vulnerabilities (SI-14) - Active Check
13 May 201400:00
openvas
Prion
Cross site scripting
2 Apr 201416:17
prion
NVD
Node
OR
dotcmsdotcmsRange2.3.1
dotcmsdotcmsMatch1.9.5.1
dotcmsdotcmsMatch2.0
dotcmsdotcmsMatch2.0.1
dotcmsdotcmsMatch2.1
dotcmsdotcmsMatch2.1.1
dotcmsdotcmsMatch2.2
dotcmsdotcmsMatch2.2.1
dotcmsdotcmsMatch2.3
ParameterPositionPathDescriptionCWE
_loginUserNamerequest bodyapplication/login/login.htmlCross-site scripting (XSS) vulnerability via login parameter in login pageCWE-79
my_account_loginrequest bodyc/portal_public/loginCross-site scripting (XSS) vulnerability via login parameter in portal loginCWE-79
emailquery paramforgotPasswordCross-site scripting (XSS) vulnerability via email parameter in forgot password endpointCWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Jun 2026 23:55Current
5.9Medium risk
Vulners AI Score5.9
CVSS 24.3
EPSS0.0188
38