Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-35358
HistoryJul 09, 2021 - 10:15 p.m.

Cross site scripting

2021-07-0922:15:00
PRIOn knowledge base
www.prio-n.com
1

4.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.9%

A stored cross site scripting (XSS) vulnerability in dotAdmin/#/c/c_Images of dotCMS 21.05.1 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the ‘Title’ and ‘Filename’ parameters.

CPENameOperatorVersion
dotcmseq21.05.1

4.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.9%

Related for PRION:CVE-2021-35358