Dotnetnuke@6.0.0 Security Vulnerabilities and Issues — Dotnetnuke@6.0.0 CVE List

Lucene search

DnnsoftwareDotnetnuke6.0.0

3 matches found

CVE•added 2025/06/21 3:15 a.m.•61 views

CVE-2025-52488

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted series of malicious interaction to potentially expose NTLM hashes to a third party SMB server. This issue has bee...

8.6CVSS8.4AI score0.35185EPSS

In wild

CVE•added 2025/06/21 3:15 a.m.•16 views

CVE-2025-52485

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted request to inject scripts in the Activity Feed Attachments endpoint which will then render in the feed. This issu...

5.4CVSS6.3AI score0.00039EPSS

CVE•added 2025/06/21 3:15 a.m.•13 views

CVE-2025-52486

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows specially crafted content in URLs to be used with TokenReplace and not be properly sanitized by some SkinObjects. This issue has been...

6.1CVSS6.4AI score0.00041EPSS