Critical RCE Bug Reported in dotCMS Content Management Software,
A pre-authenticated remote code execution vulnerability has been disclosed in dotCMS, an open-source content management system written in Java and « used by over 10,000 clients in over 70 countries around the globe, from Fortune 500 brands and mid-sized businesses. »
The critical flaw, tracked as CVE-2022-26352, stems from a directory traversal attack when performing file uploads, enabling an
The critical flaw, tracked as CVE-2022-26352, stems from a directory traversal attack when performing file uploads, enabling an
,
A pre-authenticated remote code execution vulnerability has been disclosed in dotCMS, an open-source content management system written in Java and « used by over 10,000 clients in over 70 countries around the globe, from Fortune 500 brands and mid-sized businesses. »
The critical flaw, tracked as CVE-2022-26352, stems from a directory traversal attack when performing file uploads, enabling an
The critical flaw, tracked as CVE-2022-26352, stems from a directory traversal attack when performing file uploads, enabling an
, ,
https://thehackernews.com/2022/05/critical-rce-bug-reported-in-dotcms.html