Lucene search

K
osvGoogleOSV:CVE-2021-35358
HistoryJul 09, 2021 - 10:15 p.m.

CVE-2021-35358

2021-07-0922:15:08
Google
osv.dev
1

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.9%

A stored cross site scripting (XSS) vulnerability in dotAdmin/#/c/c_Images of dotCMS 21.05.1 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the ‘Title’ and ‘Filename’ parameters.

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.9%

Related for OSV:CVE-2021-35358