4 matches found
CVE-2020-5187
DNN formerly DotNetNuke through 9.4.4 allows Path Traversal issue 2 of 2...
CVE-2020-5187
DNN formerly DotNetNuke through 9.4.4 allows Path Traversal issue 2 of 2...
CVE-2020-5187
CVE-2020-5187 affects DNN (DotNetNuke) up to version 9.4.4, where path traversal was reported. Multiple connected sources describe a zip-slip/path-traversal issue arising from unsafe handling/validation of file paths during archive extraction, enabling an attacker to access or overwrite files out...
DotNetNuke CMS 9.4.4 Zip Directory Traversal
Exploit Title: Zip Slip vulnerability Date: 23 Feb 2020 Exploit Author: Sajjad Pourali Vendor Homepage: http://dnnsoftware.com/ Software Link: https://github.com/dnnsoftware/Dnn.Platform/releases/download/v9.4.4/DNNPlatform9.4.4Install.zip Version: = 9.4.4 CVE : CVE-2020-5187 More Info:...