Description
SQL injection vulnerability in the REST API in dotCMS before 3.3.2 allows remote attackers to execute arbitrary SQL commands via the stName parameter to api/content/save/1.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2003-0226)
WordPress Plugin Social Share Icons & Social Share Buttons Cross-Site Scripting (3.0.5)
WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler SQL Injection (5.5.0)
WordPress Plugin Ship To eCourier Cross-Site Request Forgery (1.0.1)