Description
The dotCMS 4.1.1 application is vulnerable to Stored Cross-Site Scripting (XSS) affecting a vanity-urls Title field, a containers Description field, and a templates Description field.
Remediation
References
Related Vulnerabilities
Piwigo Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-26267)
WordPress Plugin One User Avatar-User Profile Picture Unspecified Vulnerability (2.3.8)
MySQL Other Vulnerability (CVE-2001-0407)
Drupal Core 5.x SQL Injection (5.0 - 5.3)
Moodle Improper Input Validation Vulnerability (CVE-2014-9060)