CVE-2021-35361

2021-07-0921:55:48

mitre

www.cve.org

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.1%

JSON

A reflected cross site scripting (XSS) vulnerability in dotAdmin/#/c/links of dotCMS 21.05.1 allows attackers to execute arbitrary commands or HTML via a crafted payload.

References

github.com/dotCMS/core/issues/20541