Cross-site scripting (XSS) vulnerability in EditModule.aspx for DotNetNuke (formerly IBuySpy Workshop) 1.0.6 up to and including 1.0.10d allows remote malicious users to inject arbitrary web script or HTML.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dotnetnuke dotnetnuke 1.0.6 |
||
dotnetnuke dotnetnuke 1.0.7 |
||
dotnetnuke dotnetnuke 1.0.8 |
||
dotnetnuke dotnetnuke 1.0.9 |
||
dotnetnuke dotnetnuke 1.0.10d |