XSS Vulnerability in dotCMS 3.7.0: Exploitable via ext/languages_manager/edit_language in portal/layout

XSS Vulnerability in dotCMS 3.7.0: Exploitable via ext/languages_manager/edit_language in portal/layout

CVE-2017-6003 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

dotCMS 3.7.0 has XSS reachable from ext/languages_manager/edit_language in portal/layout via the bottom two form fields.

Learn more about our Cms Pen Testing.