Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2017-6003
Disclosure Date: March 27, 2017 (last updated November 26, 2024)
dotCMS 3.7.0 has XSS reachable from ext/languages_manager/edit_language in portal/layout via the bottom two form fields.
0
Attacker Value
Unknown
CVE-2017-5876
Disclosure Date: February 06, 2017 (last updated November 26, 2024)
XSS was discovered in dotCMS 3.7.0, with an unauthenticated attack against the /news-events/events date parameter.
0
Attacker Value
Unknown
CVE-2017-5877
Disclosure Date: February 06, 2017 (last updated November 26, 2024)
XSS was discovered in dotCMS 3.7.0, with an unauthenticated attack against the /about-us/locations/index direction parameter.
0
Attacker Value
Unknown
CVE-2017-5875
Disclosure Date: February 06, 2017 (last updated November 26, 2024)
XSS was discovered in dotCMS 3.7.0, with an authenticated attack against the /myAccount addressID parameter.
0
