2017-02-06 15:00:00
mitre
PUBLISHED
XSS was discovered in dotCMS 3.7.0, with an unauthenticated attack against the /about-us/locations/index direction parameter.