2 matches found
CVE-2018-19554
An issue was discovered in Dotcms through 5.0.3. Attackers may perform XSS attacks via the inode, identifier, or fieldName parameter in html/js/dotcms/dijit/image/imagetool.jsp...
CVE-2018-19554
CVE-2018-19554 affects DotCMS up to version 5.0.3. The issue is an XSS vulnerability that can be triggered via the inode, identifier, or fieldName parameters in the file html/js/dotcms/dijit/image/image_tool.jsp. The available documents identify the vulnerable surface but do not provide a concret...