2 matches found
EasyDNNnews Reflective Cross-Site Scripting Vulnerability
EasyDNNnews is a DotNetNuke tool that enables unskilled users to publish as well as manage articles and news. A reflected cross-site scripting vulnerability exists in EasyDNNnnews due to JavaScript being included in the GET parameter name. This allows attackers to exploit the vulnerability to...
EasyDNNnews Cross Site Scripting
Details ======= Product: EasyDNNnews Vulnerability: Reflected XSS Author: Peter Lapp, lappsec gmail com CVE: None Vulnerable Versions: From the vendor's website: "EasyDNNnews is a very powerful DotNetNuke module that enables non-technical users to publish and manage articles, news, press releases...