EDB-41377webappsphpVERIFIED

dotCMS 3.6.1 - Blind Boolean SQL Injection

Ben Nott2/16/2017Port 80

View on Exploit-DB View Source on GitLab

AI AnalysisPowered by AI

Exploit Code

Exploit code not available in database

View Source on GitLab

Related CVEs (1)

CVE-2017-5344

9.8CRITICAL

An issue was discovered in dotCMS through 3.6.1. The findChildrenByFilter() function which is called by the web accessible path /categoriesServlet performs string interpolation and direct SQL query ex

An issue was discovered in dotCMS through 3.6.1. The findChildrenByFilter() function which is called by the web accessible path /categoriesServlet performs string interpolation and direct SQL query ex...

2/17/2017CWE-89