SQL injection vulnerability in the "Content Types > Content Types" screen in dotCMS prior to 3.3.1 allows remote authenticated malicious users to execute arbitrary SQL commands via the orderby parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dotcms dotcms |