COOEY // HUBcompliance · community · intelligence

FAIL › dossier

dotCMS vendor

1
failure events
0
zero-days
1
RCEs
1
on KEV
1
critical
95
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 2 events

DateEventSevFlagsShameSummary
2022-08-25 CVE-2022-26352 critical ⚡RCE ⌖KEV 95 dotCMS ContentResource API contains an unrestricted upload of file with a dangerous type vulnerability that allows for directory traversal, in which the file is saved outside of the intended storage location. Exploitation allows for remote code execution.
2022-08-25 CVE-2022-26352 critical ⚡RCE ⌖KEV 95 dotCMS ContentResource API contains an unrestricted upload of file with a dangerous type vulnerability that allows for directory traversal, in which the file is saved outside of the intended storage location. Exploitation allows for remote code execution.