dotcms Summary
Latest vulnerabilities published by dotcms
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Boolean-Based Blind SQL Injection in dotCMS by dotCMS
CVE-2025-8311DotcmsDotcms Cloud Services ...9.4CRITICALMalicious Administrator Could Use Session IDs to Bypass Attribution
CVE-2024-4447DotcmsDotcms Core4.9MEDIUMHTML Injection Vulnerability in Reset Password Login Page
CVE-2024-3938DotcmsDotcms Core6.1MEDIUMInsecure Access Control: Users with Site Admin Role Can Access System Maintenance Tools
CVE-2024-3164DotcmsDotcms Core4.5MEDIUMDatabase Credential Exposure in the Logs
CVE-2024-3165DotcmsDotcms Core4.5MEDIUMCNA SHORTNAME: dotCMSORG UUID: 5b9d93f2-25c7-46b4-ab60-d201718c9dd8
CVE-2023-3042DotcmsDotcms Core5.3MEDIUMImproper URL Handling in dotCMS 5.x-22.06 by dotCMS
CVE-2022-37033DotcmsDotcms6.5MEDIUMDenial of Service Vulnerability in DotCMS by DotCMS
CVE-2022-37034DotcmsDotcms5.3MEDIUMCryptographic Vulnerability in dotCMS Core Versions by dotCMS
CVE-2022-45782DotcmsDotcms8.8HIGHDirectory Traversal Vulnerability in dotCMS Core by dotCMS
CVE-2022-45783DotcmsDotcmsEPSS 18%6.5MEDIUMAccess Control Bypass in dotCMS Affects Sensitive Information Retrieval
CVE-2022-35740DotcmsDotcms6.1MEDIUMReflected XSS Vulnerability in dotCMS Core Admin Portal
CVE-2022-37431DotcmsDotcms6.1MEDIUMDirectory Traversal Vulnerability in dotCMS by dotCMS
CVE-2022-26352DotcmsDotcms💰👾🟡EPSS 94%🦅9.8CRITICALUnrestricted File Upload in DotCMS Affects Multiple Versions
CVE-2020-19138DotcmsDotcms9.8CRITICALIncorrect Access Control in DotCMS Affects Remote Security
CVE-2020-18875DotcmsDotcms8.8HIGHStored Cross-Site Scripting Flaw in dotCMS by dotCMS
CVE-2021-35358DotcmsDotcms4.8MEDIUMReflected XSS Vulnerability in dotCMS by dotCMS
CVE-2021-35361DotcmsDotcms4.8MEDIUMReflected Cross Site Scripting Vulnerability in dotCMS by dotCMS
CVE-2021-35360DotcmsDotcms4.8MEDIUMCross Site Scripting Vulnerability in dotCMS by dotCMS
CVE-2020-17542DotcmsDotcms5.4MEDIUMSQL Injection Vulnerability in dotCMS by dotCMS
CVE-2020-27848DotcmsDotcms8.8HIGHCross-Site Scripting Vulnerability in DotCMS Admin Panel
CVE-2020-35274DotcmsDotcms4.8MEDIUMDirectory Traversal Vulnerability in dotCMS by dotCMS
CVE-2020-6754DotcmsDotcmsEPSS 75%9.8CRITICALSQL Injection Vulnerability in dotCMS Affected by Publisher Role
CVE-2019-12872DotcmsDotcms7.2HIGHPath Traversal Vulnerability in dotCMS by dotCMS
CVE-2019-12309DotcmsDotcms4.9MEDIUMCross-Site Scripting Vulnerability in dotCMS by dotCMS
CVE-2019-11846DotcmsDotcms6.1MEDIUM