519 matches found
Input validation
In dotCMS 5.x-22.06, TempFileAPI allows a user to create a temporary file based on a passed in URL, while attempting to block any SSRF access to local IP addresses or private subnets. In resolving this URL, the TempFileAPI follows any 302 redirects that the remote URL returns. Because there is no...
Design/Logic Flaw
An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1. A cryptographically insecure random generation algorithm for password-reset token generation leads to account takeover...
Directory traversal
An issue was discovered in dotCMS core 4.x through 22.10.2. An authenticated directory traversal vulnerability in the dotCMS API can lead to Remote Code Execution...
CVE-2022-37034
In dotCMS 5.x-22.06, it is possible to call the TempResource multiple times, each time requesting the dotCMS server to download a large file. If done repeatedly, this will result in Tomcat request-thread exhaustion and ultimately a denial of any other requests...
CVE-2022-45783
An issue was discovered in dotCMS core 4.x through 22.10.2. An authenticated directory traversal vulnerability in the dotCMS API can lead to Remote Code Execution...
CVE-2022-45783
An issue was discovered in dotCMS core 4.x through 22.10.2. An authenticated directory traversal vulnerability in the dotCMS API can lead to Remote Code Execution...
CVE-2022-45783
Context: CVE-2022-45783 affects dotCMS core 4.x up to 22.10.2. Vulnerability: An authenticated directory traversal vulnerability in the dotCMS API can lead to Remote Code Execution. Impact (as stated): Potentially high impact on confidentiality, integrity, and availability via RCE. References/ind...
dotCMS 路径遍历漏洞
dotCMS is a content management system CMS from the United States dotCMS. The system supports RSS feeds , blogs , forums and other modules , and is easy to extend and build features . A path traversal vulnerability exists in dotCMS core, which stems from the fact that an authenticated attacker can...
CVE-2022-45782
An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1. A cryptographically insecure random generation algorithm for password-reset token generation leads to account takeover...
CVE-2022-45782
CVE-2022-45782 affects dotCMS core versions 5.3.8.5–5.3.8.15 and 21.03–22.10.1. The root cause is a cryptographically insecure random generation algorithm used for password-reset token generation, enabling account takeover. The connected documents confirm this vulnerability and its impact. No rem...
CVE-2022-37033
In dotCMS 5.x-22.06, TempFileAPI allows a user to create a temporary file based on a passed in URL, while attempting to block any SSRF access to local IP addresses or private subnets. In resolving this URL, the TempFileAPI follows any 302 redirects that the remote URL returns. Because there is no...
CVE-2022-37034
In dotCMS 5.x-22.06, it is possible to call the TempResource multiple times, each time requesting the dotCMS server to download a large file. If done repeatedly, this will result in Tomcat request-thread exhaustion and ultimately a denial of any other requests...
CVE-2022-37033
In dotCMS 5.x-22.06, the TempFileAPI vulnerability allows a user to create a temporary file from a supplied URL, because the API does not re-validate 302 redirects when resolving the remote URL. This enables potential access to data on local or private hosts that should not be reachable remotely,...
dotCMS 代码问题漏洞
dotCMS is a content management system CMS from the United States dotCMS. The system supports modules such as RSS feeds, blogs, and forums, and is easy to extend and build. A security vulnerability exists in dotCMS version 5.x-22.06, which stems from TempFileAPI allowing a user to create a tempora...
dotCMS 安全特征问题漏洞
dotCMS is a content management system CMS from the United States dotCMS. The system supports modules such as RSS feeds, blogs, forums, etc., and is easy to extend and build. A security signature issue vulnerability exists in dotCMS core versions 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1,...
CVE-2022-45782
An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1. A cryptographically insecure random generation algorithm for password-reset token generation leads to account takeover...
CVE-2022-37033
In dotCMS 5.x-22.06, TempFileAPI allows a user to create a temporary file based on a passed in URL, while attempting to block any SSRF access to local IP addresses or private subnets. In resolving this URL, the TempFileAPI follows any 302 redirects that the remote URL returns. Because there is no...
CVE-2022-37034
dotCMS 5.x-22.06 is affected by a denial-of-service condition when TempResource is called repeatedly to download large files, exhausting Tomcat request threads and denying other requests. The connected documents provide this description without including exploit details or a remediation. No other...
dotCMS 安全漏洞
dotCMS is a content management system CMS from the United States dotCMS. The system supports modules such as RSS feeds, blogs, and forums, and is easy to extend and build. A security vulnerability exists in dotCMS version 5.x-22.06, which stems from the ability to call TempResource multiple times...
CVE-2022-35740
dotCMS before 22.06 allows remote attackers to bypass intended access control and obtain sensitive information by using a semicolon in a URL to introduce a matrix parameter. This is also fixed in 5.3.8.12, 21.06.9, and 22.03.2 for LTS users. Some Java application frameworks, including those used ...