Loading
dotCMS V5.0.1 has XSS in the /html/portlet/ext/contentlet/image_tools/index.jsp fieldName and inode parameters.
Use CWE-79, Dotcms vendor hub and Dotcms product page to widen CVE-2018-16980 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2022-26352, CVE-2025-11165 and CVE-2022-45782 for nearby disclosures in the same product family.