Unrated severityNVD Advisory· Published May 23, 2019· Updated Aug 4, 2024
CVE-2019-12309
CVE-2019-12309
Description
dotCMS before 5.1.0 has a path traversal vulnerability exploitable by an administrator to create files. The vulnerability is caused by the insecure extraction of a ZIP archive.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- dotCMS/dotCMSdescription
Patches
Vulnerability mechanics
References
2- dotcms.com/security/SI-48mitrex_refsource_MISC
- github.com/dotCMS/core/compare/605e5db...364c910mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.