Aggregates CVE and security vulnerability intelligence across all dotCMS-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk csrf, vendor risk ssrf, vendor risk open redirect, and vendor risk input validation, with potential vendor impact data exposure across vendor surface production workloads use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2016-8908 | SQL injection vulnerability in the "Site Browser > HTML pages" screen in dotCMS before 3.3.1 allows remote authenticated attackers to execute arbitrary SQL commands via the orderby parameter. | [email protected] | 8.8 | 2.04% | 2016-11-14 | 2026-06-16 |
| CVE-2016-8907 | SQL injection vulnerability in the "Content Types > Content Types" screen in dotCMS before 3.3.1 allows remote authenticated attackers to execute arbitrary SQL commands via the orderby parameter. | [email protected] | 8.8 | 1.99% | 2016-11-14 | 2026-06-16 |
| CVE-2016-8906 | SQL injection vulnerability in the "Site Browser > Links pages" screen in dotCMS before 3.3.1 allows remote authenticated attackers to execute arbitrary SQL commands via the orderby parameter. | [email protected] | 8.8 | 2.04% | 2016-11-14 | 2026-06-16 |
| CVE-2016-8905 | SQL injection vulnerability in the JSONTags servlet in dotCMS before 3.3.1 allows remote authenticated attackers to execute arbitrary SQL commands via the sort parameter. | [email protected] | 8.8 | 1.99% | 2016-11-14 | 2026-06-16 |
| CVE-2016-8904 | SQL injection vulnerability in the "Site Browser > Containers pages" screen in dotCMS before 3.3.1 allows remote authenticated attackers to execute arbitrary SQL commands via the orderby parameter. | [email protected] | 8.8 | 1.94% | 2016-11-14 | 2026-06-16 |
| CVE-2016-8903 | SQL injection vulnerability in the "Site Browser > Templates pages" screen in dotCMS before 3.3.1 allows remote authenticated attackers to execute arbitrary SQL commands via the orderby parameter. | [email protected] | 8.8 | 1.94% | 2016-11-14 | 2026-06-16 |
| CVE-2016-8902 | SQL injection vulnerability in the categoriesServlet servlet in dotCMS before 3.3.1 allows remote not authenticated attackers to execute arbitrary SQL commands via the sort parameter. | [email protected] | 9.8 | 2.75% | 2016-11-14 | 2026-06-16 |
| CVE-2016-8600 | In dotCMS 3.2.1, attacker can load captcha once, fill it with correct value and then this correct value is ok for forms with captcha check later. | [email protected] | 7.5 | 1.75% | 2016-10-28 | 2026-06-16 |
| CVE-2016-4803 | CRLF injection vulnerability in the send email functionality in dotCMS before 3.3.2 allows remote attackers to inject arbitrary email headers via CRLF sequences in the subject. | [email protected] | 7.5 | 2.20% | 2016-06-30 | 2026-06-16 |
| CVE-2016-4040 | SQL injection vulnerability in the Workflow Screen in dotCMS before 3.3.2 allows remote administrators to execute arbitrary SQL commands via the orderby parameter. | [email protected] | 7.2 | 1.33% | 2016-04-19 | 2026-06-16 |
| CVE-2016-3688 | SQL injection vulnerability in dotCMS before 3.5 allows remote administrators to execute arbitrary SQL commands via the c0-e3 parameter to dwr/call/plaincall/UserAjax.getUsersList.dwr. | [email protected] | 6.5 | 1.58% | 2016-04-19 | 2026-06-16 |
| CVE-2016-3972 | Directory traversal vulnerability in the dotTailLogServlet in dotCMS before 3.5.1 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the fileName parameter. | [email protected] | 2.7 | 1.47% | 2016-04-18 | 2026-06-16 |
| CVE-2016-3971 | Cross-site scripting (XSS) vulnerability in lucene_search.jsp in dotCMS before 3.5.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter to c/portal/layout. | [email protected] | 4.8 | 0.66% | 2016-04-18 | 2026-06-16 |
| CVE-2013-3484 | Multiple cross-site scripting (XSS) vulnerabilities in dotCMS before 2.3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) _loginUserName parameter to application/login/login.html, (2) my_account_login parameter to c/portal_public/login, or (3) email parameter to forgotPassword. | [email protected] | 4.3 | 1.86% | 2014-04-02 | 2026-06-16 |
| CVE-2012-1826 | dotCMS 1.9 before 1.9.5.1 allows remote authenticated users to execute arbitrary Java code via a crafted (1) XSLT or (2) Velocity template. | [email protected] | 6.0 | 2.19% | 2012-06-08 | 2026-06-16 |
| CVE-2008-3708 | Multiple directory traversal vulnerabilities in dotCMS 1.6.0.9 allow remote attackers to read arbitrary files via a .. (dot dot) in the id parameter to (1) news/index.dot and (2) getting_started/macros/macros_detail.dot. | [email protected] | 4.3 | 4.64% | 2008-08-19 | 2026-06-16 |
| CVE-2008-2397 | Cross-site scripting (XSS) vulnerability in search-results.dot in dotCMS 1.x allows remote attackers to inject arbitrary web script or HTML via the search_query parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | [email protected] | 4.3 | 1.02% | 2008-05-21 | 2026-06-16 |