漏洞描述
dotCMS是一个100%免费基于J2EE/portal的内容管理系统,它有着许多吸引人的特性是其它许多CMS所没有的。该系统存在任意文件上传漏洞,攻击者可以直接获取服务器权限。
dotCMS任意文件上传(CVE-2022-26352)
PoC代码
暂无相关漏洞推荐
-
CVE-2022-26352: DotCMS Arbitrary File Upload POC
2025-09-01 | DotCMSThere is an arbitrary file upload vulnerability in the /api/content/ path of the DotCMS management s... -
CVE-2018-17422: DotCMS < 5.0.2 - Open Redirect POC
2025-08-01 | DotCMSdotCMS before 5.0.2 contains multiple open redirect vulnerabilities via the html/common/forward_js.j... -
CVE-2022-26352: DotCMS - Arbitrary File Upload POC
2025-08-01 | DotCMSDotCMS management system contains an arbitrary file upload vulnerability via the /api/content/ path ... -
Webmin /package-updates/update.cgi 命令执行漏洞(CVE-2022-36446) 无POC
2025-09-05 | WebminWebmin是Webmin社区的一套基于Web的用于类Unix操作系统中的系统管理工具。 Webmin 1.997之前的版本存在安全漏洞,该漏洞源于其software/apt-lib.pl组件缺少对U... -
CVE-2022-0342: Zyxel authentication bypass patch analysis POC
2025-09-01 | ZyxelAn authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versio...