Lucene search
+L

5 matches found

CVE
CVE
added 2019/05/14 5:26 p.m.68 views

CVE-2019-11846

CVE-2019-11846 affects dotCMS 5.1.1 via the upload endpoint /servlets/ajax_file_upload?fieldName=binary3, enabling HTML Injection/XSS. Root cause: input handling in the upload path allows injected HTML/JS to be stored or reflected. Impact per sources: cross-site scripting with partial integrity i...

6.1CVSS5.9AI score0.00998EPSS
Exploits5References1Affected Software1
exploitpack
exploitpack
added 2019/05/10 12:0 a.m.29 views

dotCMS 5.1.1 - HTML Injection

dotCMS 5.1.1 - HTML Injection Exploit Title: dotCMS 5.1.1 - HTML Injection Date: 2019-05-09 Exploit Author: Ismail Tasdelen Vendor Homepage: https://dotcms.com/ Software Link: https://github.com/dotCMS Software: dotCMS Product Version: 5.1.1 Vulernability Type: Code Injection Vulenrability: HTML...

4.3CVSS6.5AI score0.00998EPSS
Exploits5
0day.today
0day.today
added 2019/05/10 12:0 a.m.46 views

dotCMS 5.1.1 - HTML Injection Vulnerability

Exploit for jsp platform in category web applications Exploit Title: dotCMS 5.1.1 - HTML Injection Exploit Author: Ismail Tasdelen Vendor Homepage: https://dotcms.com/ Software Link: https://github.com/dotCMS Software: dotCMS Product Version: 5.1.1 Vulernability Type: Code Injection Vulenrability...

6.6AI score0.00998EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/05/10 12:0 a.m.207 views

dotCMS 5.1.1 - HTML Injection

Exploit Title: dotCMS 5.1.1 - HTML Injection Date: 2019-05-09 Exploit Author: Ismail Tasdelen Vendor Homepage: https://dotcms.com/ Software Link: https://github.com/dotCMS Software: dotCMS Product Version: 5.1.1 Vulernability Type: Code Injection Vulenrability: HTML Injection and Cross-site...

6.1CVSS6.3AI score0.00998EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/05/09 12:0 a.m.48 views

dotCMS 5.1.1 HTML Injection

Exploit Title: dotCMS 5.1.1 - HTML Injection Date: 2019-05-09 Exploit Author: Ismail Tasdelen Vendor Homepage: https://dotcms.com/ Software Link: https://github.com/dotCMS Software: dotCMS Product Version: 5.1.1 Vulernability Type: Code Injection Vulenrability: HTML Injection and Cross-site...

6.4AI score0.00998EPSS
Exploits5
Rows per page
Query Builder