DNN (aka DotNetNuke) prior to 9.2.0 suffers from a Server-Side Request Forgery (SSRF) vulnerability in the DnnImageHandler class. Attackers may be able to access information about internal network resources.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dnnsoftware dotnetnuke |