CVE-2020-35274

Name of the Vulnerable Software and Affected Versions DotCMS Add Template with admin panel version 20.11

Description The issue allows an attacker to gain remote privileges through cross-site scripting (XSS), potentially compromising the security of a website or web application. This can be achieved through a stored XSS attack, which may also involve stealing cookies using XSS.

Recommendations For DotCMS Add Template with admin panel version 20.11, consider disabling the template addition feature in the admin panel as a temporary workaround until a patch is available. Restrict access to the admin panel to minimize the risk of exploitation. Avoid using the admin panel for sensitive operations until the issue is resolved.