Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: dotcms Clear
ID Title
CVE-2022-26352 KEV [KEV] Path Traversal in dotcms (CVE-2022-26352)
path traversal in dotcms (CVE-2022-26352). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-35274 Cross-Site Scripting (XSS) in dotcms (CVE-2020-35274)
cross-site scripting in dotcms (CVE-2020-35274). Risk of unauthorized operations or information disclosure.
CVE-2017-15219 Cross-Site Scripting (XSS) in dotcms (CVE-2017-15219)
cross-site scripting in dotcms (CVE-2017-15219). Risk of unauthorized operations or information disclosure.
CVE-2017-11466 Unrestricted File Upload in path-traversal (CVE-2017-11466)
vulnerability in path-traversal (CVE-2017-11466). Successful exploitation can lead to full system takeover.
CVE-2017-6003 Cross-Site Scripting (XSS) in dotcms (CVE-2017-6003)
cross-site scripting in dotcms (CVE-2017-6003). Risk of unauthorized operations or information disclosure.
CVE-2017-5344 SQL Injection in sqli (CVE-2017-5344)
SQL injection in sqli (CVE-2017-5344). Successful exploitation can lead to full system takeover.
CVE-2017-5875 Cross-Site Scripting (XSS) in dotcms (CVE-2017-5875)
cross-site scripting in dotcms (CVE-2017-5875). Risk of unauthorized operations or information disclosure.
CVE-2017-5876 Cross-Site Scripting (XSS) in dotcms (CVE-2017-5876)
cross-site scripting in dotcms (CVE-2017-5876). Risk of unauthorized operations or information disclosure.
CVE-2017-5877 Cross-Site Scripting (XSS) in dotcms (CVE-2017-5877)
cross-site scripting in dotcms (CVE-2017-5877). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →