Lucene search
K

519 matches found

OSV
OSV
added 2022/11/10 9:15 p.m.23 views

CVE-2022-35740

dotCMS before 22.06 allows remote attackers to bypass intended access control and obtain sensitive information by using a semicolon in a URL to introduce a matrix parameter. This is also fixed in 5.3.8.12, 21.06.9, and 22.03.2 for LTS users. Some Java application frameworks, including those used ...

6.1CVSS6.3AI score
Exploits0References2
Prion
Prion
added 2022/11/10 9:15 p.m.24 views

Path traversal

dotCMS before 22.06 allows remote attackers to bypass intended access control and obtain sensitive information by using a semicolon in a URL to introduce a matrix parameter. This is also fixed in 5.3.8.12, 21.06.9, and 22.03.2 for LTS users. Some Java application frameworks, including those used ...

5.8CVSS6.2AI score0.01192EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/11/10 12:0 a.m.73 views

CVE-2022-35740

CVE-2022-35740 : dotCMS before 22.06 allows remote attackers to bypass access controls and access restricted resources by placing a semicolon in a URL to introduce a matrix parameter, enabling path-based XSS bypass in some frameworks (e.g., Spring/Tomcat). The issue can chain into XSS; impact pub...

6.1CVSS6.2AI score0.01192EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/11/10 12:0 a.m.4 views

dotCMS 跨站脚本漏洞

dotCMS is a content management system CMS from the United States dotCMS. The system supports modules such as RSS feeds, blogs, and forums, and is easy to extend and build. A security vulnerability exists in dotCMS versions prior to 22.06, which stems from a vulnerability that allows a remote...

6.1CVSS6.3AI score0.01192EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/11/10 12:0 a.m.33 views

CVE-2022-35740

dotCMS before 22.06 allows remote attackers to bypass intended access control and obtain sensitive information by using a semicolon in a URL to introduce a matrix parameter. This is also fixed in 5.3.8.12, 21.06.9, and 22.03.2 for LTS users. Some Java application frameworks, including those used ...

6.4AI score0.01192EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/11/10 12:0 a.m.24 views

PT-2022-22958 · Dotcms · Dotcms

Name of the Vulnerable Software and Affected Versions: dotCMS versions prior to 22.06 dotCMS version 5.3.8.12 dotCMS version 21.06.9 dotCMS version 22.03.2 Description: The issue allows remote attackers to bypass intended access control and obtain sensitive information by using a semicolon in a U...

6.1CVSS6.2AI score0.01192EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.6 views

The vulnerability of the dotCMS content management system’s administration portal allows attackers to carry out cross-site scripting attacks.

The vulnerability of the dotCMS content management system’s administration portal is related to the lack of measures taken to protect the website structure when the configuration value XSSPROTECTIONENABLED is set to false. Exploiting this vulnerability could allow a remote attacker to perform...

6.1CVSS6.1AI score0.00551EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/09/06 12:0 a.m.31 views

DotCMS 3.x < 5.3.8.10 / 21.x < 21.06.7 / 22.x < 22.03 Remote Code Execution

An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous...

9.8CVSS8AI score0.91501EPSS
Exploits4References2
CISA KEV Catalog
CISA KEV Catalog
added 2022/08/25 12:0 a.m.27 views

dotCMS Unrestricted Upload of File Vulnerability

dotCMS ContentResource API contains an unrestricted upload of file with a dangerous type vulnerability that allows for directory traversal, in which the file is saved outside of the intended storage location. Exploitation allows for remote code execution...

9.8CVSS4.9AI score0.91501EPSS
In wildExploits4
Check Point Advisories
Check Point Advisories
added 2022/08/16 12:0 a.m.16 views

dotCMS Arbitrary File Upload (CVE-2022-26352; CVE-2018-5445)

An arbitrary file upload vulnerability exists in dotCMS. Successful exploitation of this vulnerability allows an attacker to execute arbitrary code on the vulnerable system with administrative privileges...

6.8CVSS5.2AI score0.91501EPSS
Exploits4
NVD
NVD
added 2022/08/05 6:15 a.m.15 views

CVE-2022-37431

A Reflected Cross-site scripting XSS issue was discovered in dotCMS Core through 22.06. This occurs in the admin portal when the configuration has XSSPROTECTIONENABLED=false. NOTE: the vendor disputes this because the current product behavior, in effect, has XSSPROTECTIONENABLED=true in all...

6.1CVSS0.00551EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/08/05 6:15 a.m.2 views

CVE-2022-37431

A Reflected Cross-site scripting XSS issue was discovered in dotCMS Core through 22.06. This occurs in the admin portal when the configuration has XSSPROTECTIONENABLED=false. NOTE: the vendor disputes this because the current product behavior, in effect, has XSSPROTECTIONENABLED=true in all...

6.1CVSS6.3AI score0.00551EPSS
Exploits0References2
OSV
OSV
added 2022/08/05 6:15 a.m.6 views

CVE-2022-37431

A Reflected Cross-site scripting XSS issue was discovered in dotCMS Core through 22.06. This occurs in the admin portal when the configuration has XSSPROTECTIONENABLED=false. NOTE: the vendor disputes this because the current product behavior, in effect, has XSSPROTECTIONENABLED=true in all...

6.1CVSS6.1AI score
Exploits0References1
Prion
Prion
added 2022/08/05 6:15 a.m.17 views

Cross site scripting

DISPUTED A Reflected Cross-site scripting XSS issue was discovered in dotCMS Core through 22.06. This occurs in the admin portal when the configuration has XSSPROTECTIONENABLED=false. NOTE: the vendor disputes this because the current product behavior, in effect, has XSSPROTECTIONENABLED=true in...

5.8CVSS6AI score0.00551EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/05 5:31 a.m.20 views

CVE-2022-37431

A Reflected Cross-site scripting XSS issue was discovered in dotCMS Core through 22.06. This occurs in the admin portal when the configuration has XSSPROTECTIONENABLED=false. NOTE: the vendor disputes this because the current product behavior, in effect, has XSSPROTECTIONENABLED=true in all...

6.3AI score0.00551EPSS
Exploits0References1
CVE
CVE
added 2022/08/05 5:31 a.m.75 views

CVE-2022-37431

CVE-2022-37431 affects dotCMS Core (through 22.06). The issue is a reflected cross-site scripting (XSS) in the admin portal when XSS_PROTECTION_ENABLED is false; vendor notes suggest the product already behaves with XSS_PROTECTION_ENABLED=true in all configurations. Impact is reflected XSS in adm...

6.1CVSS6.1AI score0.00551EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/08/05 12:0 a.m.4 views

dotCMS 跨站脚本漏洞

dotCMS is a content management system CMS from the United States dotCMS. The system supports modules such as RSS feeds, blogs, forums, etc. and is easy to extend and build. A cross-site scripting vulnerability exists in dotCMS versions 5.2 and later, which stems from a configuration issue that...

6.1CVSS5.9AI score0.00551EPSS
Exploits0References2
NVD
NVD
added 2022/07/17 10:15 p.m.22 views

CVE-2022-26352

An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous...

9.8CVSS0.91501EPSS
Exploits4References3
OSV
OSV
added 2022/07/17 10:15 p.m.27 views

CVE-2022-26352

An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous...

9.8CVSS7.8AI score0.91501EPSS
Exploits4References3
Prion
Prion
added 2022/07/17 10:15 p.m.22 views

Directory traversal

An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous...

6.8CVSS9.8AI score0.91501EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder