dnn corp.

Top products

The 15 most recently published vulnerabilities affecting dnn corp..

• CVE-2025-59548DNN Vulnerable to Reflected Cross-Site Scripting (XSS) in CKEditor File Browser6.1Sep 23, 2025
• CVE-2025-59821DNN vulnerable to Reflected Cross-Site Scripting (XSS) using url to profile6.5Sep 23, 2025
• CVE-2025-59545DNN Vulnerable to Stored Cross-Site Scripting (XSS) in the Prompt module9.0Sep 23, 2025
• CVE-2025-59539DNN affected by Stored Cross-Site Scripting (XSS) in Profile Biography field6.3Sep 23, 2025
• CVE-2025-52487DNN.PLATFORM possibly allows bypass of IP Filters7.5Jun 21, 2025
• CVE-2025-52486DNN.PLATFORM Allows Reflected Cross-Site Scripting (XSS) in some TokenReplace situations with SkinObjects6.1Jun 21, 2025
• CVE-2025-52485DNN.PLATFORM Allows Stored Cross-Site Scripting (XSS) in Activity Feed5.4Jun 21, 2025
• CVE-2025-48377Dnn.Platform vulnerable to Reflected Cross-Site Scripting (XSS) in module actions in edit mode5.4May 23, 2025
• CVE-2025-48378Dnn.Platform vulnerable to Stored Cross-Site Scripting (XSS) with svg files rendered inline5.4May 23, 2025
• CVE-2025-48376Dnn.Platform's Site Import could use an external source with a crafted request3.5May 23, 2025
• CVE-2025-32374Possible Denial of Service (DoS) in DNN.PLATFORM registration5.9Apr 9, 2025
• CVE-2025-32372Server-Side Request Forgery (SSRF) in DotNetNuke.Core6.5Apr 9, 2025
• CVE-2017-9822​Уязвимость CMS-системы DNN, связанная с недостаточной защитой cookies-файлов, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации и выполнить произвольный код8.8Dec 1, 2021
• CVE-2018-18325DNN (aka DotNetNuke) 9.2 through 9.2.2 uses a weak encryption algorithm to protect input parameters. NOTE: this issue exists because of an incomplete fix for CVE-2018-15811.KEV7.5Jul 3, 2019
• CVE-2018-15811DNN (aka DotNetNuke) 9.2 through 9.2.1 uses a weak encryption algorithm to protect input parameters.KEV7.5Jul 3, 2019