EDB-41377webappsphpVERIFICADO

dotCMS 3.6.1 - Blind Boolean SQL Injection

Ben Nott2/16/2017Port 80

Ver en Exploit-DB Ver Fuente en GitLab

Análisis IAImpulsado por IA

Código del Exploit

Exploit code not available in database

Ver Fuente en GitLab

CVEs Relacionados (1)

CVE-2017-5344

9.8CRITICAL

An issue was discovered in dotCMS through 3.6.1. The findChildrenByFilter() function which is called by the web accessible path /categoriesServlet performs string interpolation and direct SQL query ex

An issue was discovered in dotCMS through 3.6.1. The findChildrenByFilter() function which is called by the web accessible path /categoriesServlet performs string interpolation and direct SQL query ex...

2/17/2017CWE-89