CVE advisoryKnown Exploit
CVE-2022-26352
dotCMS File Upload Vulnerability Allows Code Execution.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A vulnerability in dotCMS allows unauthenticated attackers to upload executable files, leading to remote code execution. This impacts specific dotCMS versions and introduces significant business risk by potentially compromising affected systems.