Erlar Lang

**Name of the Vulnerable Software and Affected Versions** dotCMS versions prior to 3.3.1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `sort` parameter in the categoriesServlet servlet. **Recommendations** For versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the categoriesServlet servlet to minimize the risk of exploitation. Avoid using the `sort` parameter in the affected servlet until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** dotCMS versions prior to 3.3.1 **Description** The issue allows remote authenticated attackers to execute arbitrary SQL commands. This is achieved via the `orderby` parameter in the "Site Browser > Templates pages" screen. **Recommendations** For versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "Site Browser > Templates pages" screen or avoiding the use of the `orderby` parameter until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** dotCMS versions prior to 3.3.1 **Description** The issue allows remote authenticated attackers to execute arbitrary SQL commands. This is achieved via the `orderby` parameter in the "Site Browser > Containers pages" screen. **Recommendations** For versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "Site Browser > Containers pages" screen or avoiding the use of the `orderby` parameter until the update is applied.

**Name of the Vulnerable Software and Affected Versions** dotCMS versions prior to 3.3.1 **Description** The issue allows remote authenticated attackers to execute arbitrary SQL commands. This is achieved via the `sort` parameter in the JSONTags servlet. **Recommendations** For versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the JSONTags servlet to minimize the risk of exploitation. Avoid using the `sort` parameter in the affected servlet until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** dotCMS versions prior to 3.3.1 **Description** The issue allows remote authenticated attackers to execute arbitrary SQL commands. This is achieved via the `orderby` parameter in the "Site Browser > Links pages" screen. **Recommendations** For versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "Site Browser > Links pages" screen or avoiding the use of the `orderby` parameter until the update is applied.

**Name of the Vulnerable Software and Affected Versions** dotCMS versions prior to 3.3.1 **Description** The issue allows remote authenticated attackers to execute arbitrary SQL commands. This is achieved via the `orderby` parameter in the "Content Types > Content Types" screen. **Recommendations** For versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "Content Types > Content Types" screen or avoiding the use of the `orderby` parameter until the update is applied.

**Name of the Vulnerable Software and Affected Versions** dotCMS versions prior to 3.3.1 **Description** The issue allows remote authenticated attackers to execute arbitrary SQL commands. This is achieved via the `orderby` parameter in the "Site Browser > HTML pages" screen. **Recommendations** For versions prior to 3.3.1, update to version 3.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "Site Browser > HTML pages" screen or avoiding the use of the `orderby` parameter until the update is applied.