The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Dotclear

Dotclear: Cross Site Scripting via ahtml
An attacker can trigger a Cross Site Scripting via ahtml of Dotclear, in order to run JavaScript code in the context of the web site...
CVE-2018-16358, VIGILANCE-VUL-27135
Dotclear: Cross Site Scripting via admin/users.php
An attacker can trigger a Cross Site Scripting via admin/users.php of Dotclear, in order to run JavaScript code in the context of the web site...
CVE-2018-5690, VIGILANCE-VUL-25054
Dotclear: Cross Site Scripting via admin/auth.php
An attacker can trigger a Cross Site Scripting via admin/auth.php of Dotclear, in order to run JavaScript code in the context of the web site...
CVE-2018-5689, VIGILANCE-VUL-25053
Dotclear: Cross Site Scripting via admin/blogs.php
An attacker can trigger a Cross Site Scripting via admin/blogs.php of Dotclear, in order to run JavaScript code in the context of the web site...
CVE-2017-6446, VIGILANCE-VUL-22020
Dotclear: Cross Site Scripting via admin/media.php
An attacker can trigger a Cross Site Scripting via admin/media.php of Dotclear, in order to run JavaScript code in the context of the web site...
CVE-2016-9891, VIGILANCE-VUL-21485
Dotclear: file upload via blog_theme.php
A privileged attacker can upload a malicious file via blog_theme.php on Dotclear, in order for example to upload a Trojan...
CVE-2016-9268, VIGILANCE-VUL-21111
Dotclear: file upload via fileUnzip
An attacker can upload a malicious file via fileUnzip on Dotclear, in order for example to upload a Trojan...
CVE-2016-7902, VIGILANCE-VUL-20777
Dotclear: spoofing of password reset page
An attacker can define a malicious password reset page for Dotclear, in order to obtain a password entered by a victim...
CVE-2016-7903, VIGILANCE-VUL-20776
Dotclear: vulnerability via Blogroll Plugin
A vulnerability via Blogroll Plugin of Dotclear was announced...
VIGILANCE-VUL-20467
Dotclear: three vulnerabilities
An attacker can use several vulnerabilities of Dotclear...
VIGILANCE-VUL-20466
Our database contains other pages. You can request a free trial to read them.

Display information about Dotclear: