Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dnnsoftware vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2019-12562
Stored Cross-Site Scripting in DotNetNuke (DNN) Version prior to 9.4.0 allows remote malicious users to store and embed the malicious script into the admin notification page. The exploit could be used to perfom any action with admin privileges such as managing content, adding use...
Dnnsoftware Dotnetnuke
1 EDB exploit
1 Github repository
312
VMScore
CVE-2020-5186
DNN (formerly DotNetNuke) up to and including 9.4.4 allows XSS (issue 1 of 2).
Dnnsoftware Dotnetnuke
578
VMScore
CVE-2020-5187
DNN (formerly DotNetNuke) up to and including 9.4.4 allows Path Traversal (issue 2 of 2).
Dnnsoftware Dotnetnuke
356
VMScore
CVE-2020-5188
DNN (formerly DotNetNuke) up to and including 9.4.4 has Insecure Permissions.
Dnnsoftware Dotnetnuke
356
VMScore
CVE-2020-11585
There is an information disclosure issue in DNN (formerly DotNetNuke) 9.5 within the built-in Activity-Feed/Messaging/Userid/ Message Center module. A registered user is able to enumerate any file in the Admin File Manager (other than ones contained in a secure folder) by sending...
Dnnsoftware Dotnetnuke 9.5.0
384
VMScore
CVE-2018-14486
DNN (formerly DotNetNuke) 9.1.1 allows cross-site scripting (XSS) via XML.
Dnnsoftware Dotnetnuke 9.1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2