Belladona-C0Re

**Name of the Vulnerable Software and Affected Versions** dotCMS version 3.7.0 **Description** A cross-site scripting issue was found, allowing an authenticated attack against the "addressID" parameter in the /myAccount API endpoint. **Recommendations** For dotCMS version 3.7.0, consider restricting access to the /myAccount API endpoint until a patch is available, and avoid using the `addressID` parameter in this endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** dotCMS version 3.7.0 **Description** A cross-site scripting issue was found, allowing an unauthenticated attack against the "date" parameter in the /news-events/events API endpoint. **Recommendations** For dotCMS version 3.7.0, update to a version that includes a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** dotCMS version 3.7.0 **Description** A cross-site scripting (XSS) issue was found, allowing an unauthenticated attack against the "direction" parameter in the "/about-us/locations/index" API endpoint. **Recommendations** For dotCMS version 3.7.0, update to a version that includes a fix for this issue, as using the vulnerable version poses a risk of XSS attacks.

**Name of the Vulnerable Software and Affected Versions** Exponent CMS version 2.4.1 **Description** A blind SQL injection issue allows un-authenticated users to exploit the system via an HTTP GET request. This can be used to dump database data to a malicious server using out-of-band techniques, such as `select loadfile()`. The issue affects the `source selector.php` file and the `src` parameter. **Recommendations** For Exponent CMS version 2.4.1, as a temporary workaround, consider restricting access to the `source selector.php` file and avoid using the `src` parameter in HTTP GET requests until a patch is available.