dotclear version 2.25.3 suffers from a remote shell upload vulnerability.
df4bcad25c79816215d96072e83c75489c62526475adf915d84a5f7090e98d9a
Dotclear version 2.9.1 allows authenticated users to leverage the RSS import functionality to scan ports of the internal network.
b4ca9a915294a5f4bbde53e55111eef594e01219e39ac3a8e6cd43243e379090
Dotclear version 2.9.1 suffers from a remote shell upload vulnerability.
ba8acc3417c99536c3b107bc026c7f484a8fbe713e64b1bc8e9382c721b867af
Dotclear version 2.9.1 suffers from a directory download vulnerability.
12d8a11be25e1fffa3e1545be1c56d3281f8b11c9eb0a5d1daf717597c92f8b4
dotclear version 2.8.1 suffers from a cross site scripting vulnerability.
f7069d8f699466eafd8721698222a6c4a8e0e2de33c5167d42ccadd7ceda4dc0
dotclear version 2.8.1 suffers from a remote shell upload vulnerability.
397c80d12c7ffdf3b32fe5dd2b3fa36c21b9925303a3b7d37c9acb21df26bc19
This is a Metasploit modules that leverages an authenticated arbitrary file upload vulnerability in Dotclear versions 2.6.2 and below.
fa7134cec4517d630b5ea12c4242fbfc9bfb06e0df1b252b0e24e5fa245675a6
Dotclear versions 2.6.2 and below suffer from a remote SQL injection vulnerability.
2067441f7e53b38ccded93a55914eb552ab0546ea50c16e0ae0faf9cda833960
Dotclear versions 2.6.2 and below suffer from a remote shell upload vulnerability.
31ef78e04a371a4e90bcaf14ef4a3350c0869ac317a39cdbeb7a37d65897f61e
Dotclear versions 2.6.2 and below suffer from an XML-RPC interface authentication bypass vulnerability.
0ba9c89e27c9ba118a254a769b3bfb910bbbcfd3ba96f87cd6f39126a26f52b7
Dotclear version 2.5 suffers from a cross site scripting vulnerability.
e963b235c2473ba1856c41c979ed4bdb77a01b126752a9d002ff7ec49969440a
CMS Dotclear version 2.4.4 suffers from cross site scripting and content spoofing vulnerabilities.
625cc001772f2b42ce6045d05996c1d2b54a79d66309e300357424fc1b5ada2f
Dotclear, InstantCMS, AionWeb, and Dolphin all include a version of swfupload.swf that suffers from a cross site scripting vulnerability.
a2a158397ae79c78e46a0c4935d002352662c55b69f1181ce13b4acd1f39d885
Secunia Security Advisory - High-Tech Bridge SA has discovered multiple vulnerabilities in Dotclear, which can be exploited by malicious people to conduct cross-site scripting attacks.
3a701a94b42d5b369d64c0cfeebbdbd7bca0625eee08e019e5aa49418191435b
Dotclear version 2.4.1.2 suffers from multiple cross site scripting vulnerabilities.
1633e6f76281da7b22a07b63915222b61722ccb291e2995dfcf8a370d633aecc
Dotclear version 2.3.1 suffers from a shell upload vulnerability.
6eec6a310607ec86faeec4485e4ae5322aaa9043664ad28d9cfd1300cbfbd544
Magazeen theme version 1.0 for WordPress and Dotclear suffers from a cross site scripting vulnerability.
9e1279300ac5f76d0b6725e54d3abd554b6b664d9dd441e1e078f9adebdb376f
Secunia Security Advisory - A vulnerability has been discovered in Dotclear, which can be exploited by malicious users to compromise a vulnerable system.
84b7bb1c6df6f1d12c69cca580d96072e9d15112a3ec01f30ca0931b19864d95
Secunia Security Advisory - A vulnerability has been reported in Dotclear, which can be exploited by malicious people to conduct cross-site scripting attacks.
7cbd1cbf428f78674a337c04410e97f60d106ffe160181f404e975af4f9207fd
Secunia Security Advisory - Morgan ARMAND has discovered a vulnerability in DotClear, which can be exploited by malicious users to compromise a vulnerable system.
3f4f841cf84b2892713479e5e131bf2d41298cb9c041ec13ccc872d42a2a629f
Dotclear versions 1.2.7.1 and below suffer from an arbitrary upload vulnerability in ecrire/images.php.
f00d2092dada1786af869794b935151e110c92321d1cc5e74cd53b92245b27ed
Secunia Security Advisory - PsychoGun has reported a vulnerability in DotClear, which can be exploited by malicious people to conduct cross-site request forgery attacks.
3ba5033a4b877cd8b23d8b8ce7710944bec96734da3ae263ec13097ae27e4504
Two cross site scripting vulnerabilities have been discovered in dotclear 1.x.
4af0578d4225e5fd0d35d74368d90cc56003d17e5eb79b7c7a55e90060c64e31
Secunia Security Advisory - nassim has reported some vulnerabilities in DotClear, which can be exploited by malicious people to conduct cross-site scripting attacks.
aaab10acec3ab1a25191c148b918c9492d4999d29ddcf067d7b74baf66152a1c
DotClear version 1.2.5 is susceptible to cross site scripting attacks.
f20e1734db1bdd3604013e7d56b07a77438a24b52501927c077bd5c2cc977e45
Secunia Security Advisory - rgod has reported a vulnerability in DotClear, which can be exploited by malicious people to compromise a vulnerable system.
60d5d2cd6301efb2ef4c53ce3b35dfdf411abf9cc0c184f91a2f671af0d9dadb