CVE-2021-35360

Published
View on NVD ↗
CVSS v3
4.8
MEDIUM
CVSS v2
3.5
LOW
Affected
1
PROJECT

Description

A reflected cross site scripting (XSS) vulnerability in dotAdmin/#/c/containers of dotCMS 21.05.1 allows attackers to execute arbitrary commands or HTML via a crafted payload.

dotCMS/core
dotCMS/core
The Visual Headless Content Management System for Enterprises
GitHubGitHub
947