{ads}

Critical RCE Bug Reported in dotCMS Content Management Software



May 04, 2022 at 05:35PM

A pre-authenticated remote code execution vulnerability has been disclosed in dotCMS, an open-source content management system written in Java and "used by over 10,000 clients in over 70 countries around the globe, from Fortune 500 brands and mid-sized businesses." The critical flaw, tracked as CVE-2022-26352, stems from a directory traversal attack when performing file uploads, enabling an

from The Hacker News https://ift.tt/ceAnmJx

0 Response to "Critical RCE Bug Reported in dotCMS Content Management Software"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads