Skip to content

CVE lookup

CVE-2026-8054

Pruva has a verified reproduction for CVE-2026-8054: Unauthenticated SQL injection in dotCMS Publish Audit API. The canonical evidence record is REPRO-2026-00194.

REPRO

REPRO-2026-00194

Package

dotCMS/core · github

Severity

CRITICAL

Status

published