CVE-2018-18325

DNN aka DotNetNuke 9.2 through 9.2.2 uses a weak encryption algorithm to protect input parameters. NOTE: this issue exists because of an incomplete fix for CVE-2018-15811...

PT-2025-26484 · Dnn · Dnn

Name of the Vulnerable Software and Affected Versions: DNN formerly DotNetNuke versions 6.0.0 through 10.0.0 Description: The issue allows a specially crafted series of malicious interactions to potentially expose NTLM hashes to a third-party SMB server. This is a problem in the DNN.PLATFORM, par...

DNN < 9.13.9 DotNetNuke.Core Multiple Vulnerabilities

According to its self-reported version, the instance of DNN formerly DotNetNuke running on the remote web server is prior to 9.13.9. It is, therefore, affected by multiple vulnerabilities: - DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem...

DNN (DotNetNuke) < 6.2.9 / 7.1.1 Multiple Vulnerabilities

The version of DNN installed on the remote host is affected by multiple vulnerabilities : - The application is affected by a persistent cross-site scripting vulnerability because input to the 'Display Name' in the 'Manage Profile' view is not properly sanitized. CVE-2013-3943 - The application is...