Unsafe Dependency Resolution

Overview Affected versions of this package are vulnerable to Unsafe Dependency Resolution via the Skin feature. An attacker can cause unauthorized theme loading and potentially execute arbitrary code by supplying crafted query parameters to load unused or outdated themes. Remediation Upgrade...

Unsafe Dependency Resolution

Overview DotNetNuke.Core is a references provider to the DotNetNuke.dll to develop extensions for the DNN Platform. Affected versions of this package are vulnerable to Unsafe Dependency Resolution via the Skin feature. An attacker can cause unauthorized theme loading and potentially execute...

CVE-2025-59535

DNN (DotNetNuke) before version 10.1.0 is vulnerable to loading unused themes via query parameters. If an installed theme has a vulnerability, it could be loaded on unsuspecting clients, potentially enabling server-side or client-side arbitrary code execution depending on the vulnerable theme. Th...

[RHSA-2003:043-12] Updated WindowMaker packages fix vulnerability in theme-loading

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated WindowMaker packages fix vulnerability in theme-loading Advisory ID: RHSA-2003:043-12 Issue date: 0000-01-01 Updated on: 2003-02-05 Product: Red Hat Linux Keywords:...

Moderate: Red Hat Security Advisory: : : : Updated WindowMaker packages fix vulnerability in theme-loading

Updated packages are available to fix a vulnerability in WindowMaker. Updated 16 April 2003 Added packages for Red Hat Linux on IBM iSeries and pSeries systems. Window Maker is an X11 window manager which emulates the look and feel of the NeXTSTEP graphical user interface. Al Viro found a buffer...