CVE-2022-45782

HIGH LAB

dotCMS core <5.3.8.15,22.10.1 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-45782. PoCs published by ninajafli.

AI-analyzed exploit summary This PoC exploits CVE-2022-45782 in dotCMS by leveraging predictable password-reset tokens generated via RandomStringUtils.randomAlphanumeric(). It demonstrates brute-forcing the token and resetting an administrator's password.

Description

An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15 and 21.03 through 22.10.1. A cryptographically insecure random generation algorithm for password-reset token generation leads to account takeover.

Exploits (1)

nomisec WORKING POC 1 stars
by ninajafli · poc
https://github.com/ninajafli/DotCMS-CVE-2022-45782

This PoC exploits CVE-2022-45782 in dotCMS by leveraging predictable password-reset tokens generated via RandomStringUtils.randomAlphanumeric(). It demonstrates brute-forcing the token and resetting an administrator's password.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: dotCMS (version not specified)
No auth needed
Prerequisites: SMTP configured for dotCMS · Attacker and admin accounts created · Compiled token cracker binary
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 8.8
EPSS 0.0064
EPSS Percentile 45.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Lab Environment

COMMUNITY
Community Lab
docker pull docker.elastic.co/elasticsearch/elasticsearch:7.9.1
docker pull dotcms/dotcms:22.10.1

Details

CWE
CWE-338
Status published
Products (1)
dotcms/dotcms 5.3.8.5 - 5.3.8.15
Published Feb 01, 2023
Tracked Since Feb 18, 2026