CVE-2016-3688 in dotCMSinformazioni

Riassunto

di MITRE

SQL injection vulnerability in dotCMS before 3.5 allows remote administrators to execute arbitrary SQL commands via the c0-e3 parameter to dwr/call/plaincall/UserAjax.getUsersList.dwr.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Fonti

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!