CVE-2022-37431 – A Reflected Cross-site scripting (XSS) issue was discovered in dotCMS Core through 22.06. …

Vuln ID: CVE-2022-37431

Published:  2022-08-05  06:15:08Z

Description: A Reflected Cross-site scripting (XSS) issue was discovered in dotCMS Core through 22.06. This occurs in the admin portal when the configuration has XSS_PROTECTION_ENABLED=false.

Source: NVD.NIST.GOV