Description
The dotCMS 4.1.1 application is vulnerable to Stored Cross-Site Scripting (XSS) affecting a vanity-urls Title field, a containers Description field, and a templates Description field.
Remediation
References
Related Vulnerabilities
WordPress Plugin Better Font Awesome Cross-Site Request Forgery (2.0.1)
SharePoint CVE-2023-36892 Vulnerability (CVE-2023-36892)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2012-2733)
WordPress Plugin File Manager Unspecified Vulnerability (5.0.0)
WordPress Resource Management Errors Vulnerability (CVE-2014-5266)