dotCMS 'stName' Parameter SQL Injection Vulnerability

Bugtraq ID: 94992
Class: Input Validation Error
CVE: CVE-2016-2355
Remote: Yes
Local: No
Published: Apr 12 2016 12:00AM
Updated: Jan 12 2017 02:04AM
Credit: Nicky @ Tencent Security Platform Department.
Vulnerable: dotCMS dotCMS 3.3.1
dotCMS dotCMS 2.3.2
dotCMS dotCMS 2.3.1
dotCMS dotCMS 2.0.1
dotCMS dotCMS 3.3
dotCMS dotCMS 2.5.4
dotCMS dotCMS 2.5.3
dotCMS dotCMS 2.5.2
dotCMS dotCMS 2.5.1
dotCMS dotCMS 2.5
dotCMS dotCMS 2.2.1
dotCMS dotCMS 2.1.1
dotCMS dotCMS 2.0
dotCMS dotCMS 1.9.5.1
dotCMS dotCMS 1.9.5.0
dotCMS dotCMS 1.9.2.1
dotCMS dotCMS 1.9
dotCMS dotCMS 1.6
Not Vulnerable: dotCMS dotCMS 3.3.2
dotCMS dotCMS 3.5


 

Privacy Statement
Copyright 2010, SecurityFocus