Dotcms Latest High Vulnerabilities

Boolean-Based Blind SQL Injection in dotCMS by dotCMS

CVE-2025-8311

DotcmsDotcms Cloud Services ...9.4CRITICAL

Cryptographic Vulnerability in dotCMS Core Versions by dotCMS

CVE-2022-45782

DotcmsDotcms8.8HIGH

Directory Traversal Vulnerability in dotCMS by dotCMS

CVE-2022-26352

DotcmsDotcms💰👾🟡EPSS 94%🦅9.8CRITICAL

Unrestricted File Upload in DotCMS Affects Multiple Versions

CVE-2020-19138

DotcmsDotcms9.8CRITICAL

Incorrect Access Control in DotCMS Affects Remote Security

CVE-2020-18875

DotcmsDotcms8.8HIGH

SQL Injection Vulnerability in dotCMS by dotCMS

CVE-2020-27848

DotcmsDotcms8.8HIGH

Directory Traversal Vulnerability in dotCMS by dotCMS

CVE-2020-6754

DotcmsDotcmsEPSS 75%9.8CRITICAL

SQL Injection Vulnerability in dotCMS Affected by Publisher Role

CVE-2019-12872

DotcmsDotcms7.2HIGH

SQL Injection Vulnerability in dotCMS Product by dotCMS

CVE-2016-10007

DotcmsDotcms7.2HIGH

SQL Injection Vulnerability in dotCMS by dotCMS

CVE-2016-10008

DotcmsDotcms7.2HIGH

Arbitrary File Upload Vulnerability in dotCMS by dotCMS

CVE-2017-11466

DotcmsDotcms7.2HIGH

SQL Injection Vulnerability in dotCMS by dotCMS

CVE-2017-5344

DotcmsDotcms9.8CRITICAL

SQL Injection Vulnerability in dotCMS by dotCMS

CVE-2016-2355

DotcmsDotcms9.8CRITICAL

SQL Injection Vulnerability in dotCMS by dotCMS Inc.

CVE-2016-8902

DotcmsDotcms9.8CRITICAL

SQL Injection in DotCMS Before 3.3.1

CVE-2016-8903

DotcmsDotcms8.8HIGH

SQL Injection Vulnerability in dotCMS Before Version 3.3.1

CVE-2016-8904

DotcmsDotcms8.8HIGH

SQL Injection Vulnerability in dotCMS by dotCMS

CVE-2016-8905

DotcmsDotcms8.8HIGH

SQL Injection Vulnerability in dotCMS by dotCMS

CVE-2016-8906

DotcmsDotcms8.8HIGH

SQL Injection Vulnerability in dotCMS Affecting Remote Authenticated Users

CVE-2016-8907

DotcmsDotcms8.8HIGH

SQL Injection Flaw in dotCMS Affects Multiple Versions

CVE-2016-8908

DotcmsDotcms8.8HIGH

Captcha Bypass Vulnerability in dotCMS by dotCMS

CVE-2016-8600

DotcmsDotcms7.5HIGH

CRLF Injection Vulnerability in dotCMS Email Functionality

CVE-2016-4803

DotcmsDotcms7.5HIGH

SQL Injection Vulnerability in dotCMS Product by dotCMS

CVE-2016-4040

DotcmsDotcms7.2HIGH

Vulnerability Published:

Sort By:

4 September 2025

Boolean-Based Blind SQL Injection in dotCMS by dotCMS

1 February 2023

Cryptographic Vulnerability in dotCMS Core Versions by dotCMS

17 July 2022

Directory Traversal Vulnerability in dotCMS by dotCMS

8 September 2021

Unrestricted File Upload in DotCMS Affects Multiple Versions

18 August 2021

Incorrect Access Control in DotCMS Affects Remote Security

30 December 2020

SQL Injection Vulnerability in dotCMS by dotCMS

5 February 2020

Directory Traversal Vulnerability in dotCMS by dotCMS

18 June 2019

SQL Injection Vulnerability in dotCMS Affected by Publisher Role

19 February 2018

SQL Injection Vulnerability in dotCMS Product by dotCMS

SQL Injection Vulnerability in dotCMS by dotCMS

20 July 2017

Arbitrary File Upload Vulnerability in dotCMS by dotCMS

17 February 2017

SQL Injection Vulnerability in dotCMS by dotCMS

19 December 2016

SQL Injection Vulnerability in dotCMS by dotCMS

14 November 2016

SQL Injection Vulnerability in dotCMS by dotCMS Inc.

SQL Injection in DotCMS Before 3.3.1

SQL Injection Vulnerability in dotCMS Before Version 3.3.1

SQL Injection Vulnerability in dotCMS by dotCMS

SQL Injection Vulnerability in dotCMS by dotCMS

SQL Injection Vulnerability in dotCMS Affecting Remote Authenticated Users

SQL Injection Flaw in dotCMS Affects Multiple Versions

28 October 2016

Captcha Bypass Vulnerability in dotCMS by dotCMS

30 June 2016

CRLF Injection Vulnerability in dotCMS Email Functionality

19 April 2016

SQL Injection Vulnerability in dotCMS Product by dotCMS