CVE-2016-3688 Vulnerability

SQL injection vulnerability in dotCMS before 3.5 allows remote administrators to execute arbitrary SQL commands via the c0-e3 parameter to dwr/call/plaincall/UserAjax.getUsersList.dwr. (CVSS:4.0) (Last Update:2016-04-28)

Vulnerability Details : SQL injection vulnerability in dotCMS before 3.5 allows remote administrators to execute arbitrary SQL commands via the c0-e3 parameter to dwr/call/plaincall/UserAjax.getUsersList.dwr. Publish Date : 2016-04-19 Last Update Date : 2016-04-28 - CVSS Scores & Vulnerability Types CVSS Score 4.0 Confidentiality Impact Partial(There is considerable informational disclosure.) Integrity Impact None(There is no impact to the integrity of the system) Availability Impact None(There is no impact to the availability of the system.) Access Complexity Low(Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. ) Authentication Single system(The vulnerability requires an attacker to be logged into the system (such as at a command line or via a desktop session or web interface).) Gained Access None Vulnerability Type(s) Execute CodeSql InjectionObtain Information CWE ID 200 - Products Affected By CVE-2016-3688 # Product Type Vendor Product Version Update Edition Language 1 Application Dotcms Dotcms 3.3.1 Version Details Vulnerabilities - Number Of Affected Versions By Product Vendor Product Vulnerable Versions Dotcms Dotcms 1 - References For CVE-2016-3688 http://dotcms.com/security/SI-32 CONFIRM http://packetstormsecurity.com/files/136548/DotCMS-3.3-SQL-Injection.html http://seclists.org/fulldisclosure/2016/Apr/11 FULLDISC 20160404 SQL Injection Vulnerability in DotCms v3.3 http://seclists.org/fulldisclosure/2016/Apr/5 FULLDISC 20160404 DotCMS injection Vulnerability

- Metasploit Modules Related To CVE-2016-3688 There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)