Directory traversal vulnerability in the dotTailLogServlet in dotCMS prior to 3.5.1 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the fileName parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dotcms dotcms |