Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.6 views

Dotnetnuke 9.0.x < 9.13.10 / 10.0.x < 10.02.00 Stored XSS in Scheduler LogNotes (CVE-2026-24836)

According to its self-reported version, the instance of Dotnetnuke running on the remote web server is 9.0.x prior to 9.13.10 or 10.0.x prior to 10.02.00. It is, therefore, affected by a vulnerability. - DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsof...

7.6CVSS5.5AI score0.00226EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.6 views

DNN Cross-Site Scripting Vulnerabilities

DNN also known as DotNetNuke is an open-source content management system CMS developed by the American company DNN, supported by Microsoft and based on the ASP.NET platform. This system features easy installation, scalability, and rich functionality. Versions of DNN prior to 9.13.10 and 10.2.0...

7.6CVSS5.6AI score0.00249EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.8 views

DNN Cross-Site Scripting Vulnerabilities

DNN also known as DotNetNuke is an open-source content management system CMS developed by the American company DNN, supported by Microsoft and based on the ASP.NET platform. This system features easy installation, scalability, and rich functionality. Versions of DNN prior to 9.13.10 and 10.2.0...

9.1CVSS5.6AI score0.00188EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/27 11:49 p.m.30 views

CVE-2026-24833 DotNetNuke.Core Vulnerable to Stored XSS in Module Description

DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem. Prior to versions 9.13.10 and 10.2.0, a module could install with richtext in its description field which could contain scripts that will run for user in the Persona Bar. Versions 9.13.10 and...

7.6CVSS0.00174EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/27 11:47 p.m.4 views

CVE-2026-24784

DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem. Starting in version 9.0.0 and prior to versions 9.13.10 and 10.2.0, a content editor could inject scripts in module headers/footers that would run for other users. Versions 9.13.10 and 10.2.0...

6.8CVSS5.9AI score0.0016EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder