Dotnetnuke Security Vulnerabilities and Issues — Dotnetnuke CVE List

Lucene search

DnnsoftwareDotnetnuke

3 matches found

CVE•added 2023/04/12 1:15 p.m.•76 views

CVE-2022-47053

An arbitrary file upload vulnerability in the Digital Assets Manager module of DNN Corp DotNetNuke v7.0.0 to v9.10.2 allows attackers to execute arbitrary code via a crafted SVG file.

5.4CVSS6AI score0.00526EPSS

CVE•added 2022/07/20 1:15 p.m.•49 views

CVE-2021-31858

DotNetNuke (DNN) 9.9.1 CMS is vulnerable to a Stored Cross-Site Scripting vulnerability in the user profile biography section which allows remote authenticated users to inject arbitrary code via a crafted payload.

5.4CVSS5.1AI score0.00234EPSS

CVE•added 2020/02/24 3:15 p.m.•48 views

CVE-2020-5186

DNN (formerly DotNetNuke) through 9.4.4 allows XSS (issue 1 of 2).

5.4CVSS5.2AI score0.00353EPSS