CVE-2016-8600

Published: Oct 28, 2016Modified: May 6, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

In dotCMS 3.2.1, attacker can load captcha once, fill it with correct value and then this correct value is ok for forms with captcha check later.

Products: Dotcms: Dotcms

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Dotcms Dotcms	Version 3.2.1

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

Source: cve@mitre.org

Source: cve@mitre.org

Vendor Advisory

Source: cve@mitre.org

ExploitThird Party Advisory

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Source: af854a3a-2127-422b-91ae-364da2661108

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

No history available yet.