Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-26352 KEV |
|
[KEV] Path Traversal in dotcms (CVE-2022-26352)
path traversal in dotcms (CVE-2022-26352). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-35274 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2020-35274)
cross-site scripting in dotcms (CVE-2020-35274). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15219 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-15219)
cross-site scripting in dotcms (CVE-2017-15219). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11466 |
|
Unrestricted File Upload in path-traversal (CVE-2017-11466)
vulnerability in path-traversal (CVE-2017-11466). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6003 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-6003)
cross-site scripting in dotcms (CVE-2017-6003). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5344 |
|
SQL Injection in sqli (CVE-2017-5344)
SQL injection in sqli (CVE-2017-5344). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5875 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-5875)
cross-site scripting in dotcms (CVE-2017-5875). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5876 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-5876)
cross-site scripting in dotcms (CVE-2017-5876). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5877 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-5877)
cross-site scripting in dotcms (CVE-2017-5877). Risk of unauthorized operations or information disclosure.
|