VYPR
Unrated severityNVD Advisory· Published Sep 8, 2021· Updated Aug 4, 2024

CVE-2020-19138

CVE-2020-19138

Description

Unrestricted Upload of File with Dangerous Type in DotCMS v5.2.3 and earlier allow remote attackers to execute arbitrary code via the component "/src/main/java/com/dotmarketing/filters/CMSFilter.java".

Affected products

2
  • DotCMS/DotCMSdescription
  • Dotcms/Dotcmsllm-fuzzy
    Range: <=5.2.3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.