Security Advisory

CVE-2020-18875

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-18 16:55:53

Last updated 2024-08-04 14:08:30

Assigner mitre

State PUBLISHED

Description

Incorrect Access Control in DotCMS versions before 5.1 allows remote attackers to gain privileges by injecting client configurations via vtl (velocity) files.

← Browse all CVEs View on cve.org ↗